opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851. CREATE(Triage):(User=admin) CVE-2020-8112 (https://nvd.nist.gov/vuln/detail/CVE-2020-8112)