Aous Naman reports several vulnerabilities fixed in OpenJPH versions
up to 0.24.5 and credits Cary Phillips for reporting them from the
OSS-fuzz project.
[0.24.5] Addresses OpenEXR OSS-fuzz issue 5747129672073216 that can cause heap corruption.
[0.24.4...] we now check that the ATK marker segment length (Latk) makes sense.
The issue was identified in OpenEXR fuzzing.
[0.24.3] This is an important bug fix. It protects against illegally long QCD and QCC marker segments. It was discovered during OpenEXR fussing; thanx to [Cary Phillips].