Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-38266HistorySep 09, 2022 - 10:15 p.m.
CVE-2022-38266
2022-09-0922:15:08
Debian Security Bug Tracker
security-tracker.debian.org
16
leptonica linked library
denial of service
jpeg file
cve-2022-38266
arithmetic exception
unix
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
53.1%
An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | leptonlib | < 1.82.0-1 | leptonlib_1.82.0-1_all.deb |
| Debian | 11 | all | leptonlib | < 1.79.0-1.1+deb11u1 | leptonlib_1.79.0-1.1+deb11u1_all.deb |
| Debian | 999 | all | leptonlib | < 1.82.0-1 | leptonlib_1.82.0-1_all.deb |
| Debian | 13 | all | leptonlib | < 1.82.0-1 | leptonlib_1.82.0-1_all.deb |
Related
nessus
nessus
Debian DLA-3233-1 : leptonlib - LTS security update
2022-12-11 00:00:00
RHEL 8 : leptonica (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 8 : leptonica (Unpatched Vulnerability)
2024-05-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2178
2023-07-04 12:41:09
prion
prion
Design/Logic Flaw
2022-09-09 22:15:00
debian
debian
[SECURITY] [DLA 3233-1] leptonlib security update
2022-12-08 13:35:55
osv
osv
CVE-2022-38266
2022-09-09 22:15:08
leptonlib - security update
2022-12-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3233-1)
2022-12-09 00:00:00
Mageia: Security Advisory (MGASA-2022-0472)
2022-12-19 00:00:00
ubuntucve
ubuntucve
CVE-2022-38266
2022-09-09 00:00:00
cve
cve
CVE-2022-38266
2022-09-09 22:15:08
mageia
mageia
Updated leptonica packages fix security vulnerability
2022-12-17 21:48:08
redhatcve
redhatcve
CVE-2022-38266
2022-10-06 08:27:46
nvd
nvd
CVE-2022-38266
2022-09-09 22:15:08
cvelist
cvelist
CVE-2022-38266
2022-09-09 00:00:00
gentoo
gentoo
Leptonica: Multiple Vulnerabilities
2023-12-18 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
53.1%
Related for DEBIANCVE:CVE-2022-38266