The Jpeg2KImagePlugin plugin in Pillow prior to 2.5.3 allows remote malicious users to cause a denial of service via a crafted image.
opensuse opensuse 13.2
python pillow