Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4015383
HistoryApr 11, 2017 - 7:00 a.m.

Security update for the libjpeg information disclosure vulnerability in Windows Vista and Windows Server 2008: April 11, 2017

2017-04-1107:00:00
Microsoft
support.microsoft.com
16

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.2%

JSON

Security update for the libjpeg information disclosure vulnerability in Windows Vista and Windows Server 2008: April 11, 2017

Summary

To learn more about the vulnerability, go to CVE-2013-6629.

More Information

Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:
Security update deployment information: April 11, 2017

More Information

__

How to obtain help and support for this security update

Help for installing updates: Windows Update FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

File Information

__

File hash information

File name SHA1 hash SHA256 hash
Windows6.0-KB4015383-ia64.msu A2A11AEF192DEC2CECB3AEFBFF46229FD3B4B1B8 75AF82EFD3915E91F750F456956B102313AFE6E97E7F6D20C72FFC6F0275C10F
Windows6.0-KB4015383-x64.msu 65BFA33D2707C547F938BCF52B43F28392C26A83 50E63F033ED014DBE4A565C9BAE63929D19ED6D22B5CEB23932C7639668ACF34
Windows6.0-KB4015383-x86.msu DC6CCD43B6A47C06C33DA397D68E82C2E4189379 3DC322002543CD1A055A1CFB56FFD7EFEB779354824ECFECC2BDAFF8161A6FD2

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Vista and Windows Server 2008 file information

**Note:**The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

__

For all supported ia64-based versions

File name File version File size Date Time Platform
Gdiplus.dll 5.2.6002.19749 4,918,272 09-Mar-2017 16:39 IA-64
Gdiplus.dll 5.2.6002.24072 4,918,784 09-Mar-2017 16:16 IA-64
Gdiplus.dll 6.0.6002.19749 5,275,136 09-Mar-2017 16:39 IA-64
Gdiplus.dll 6.0.6002.24072 5,275,136 09-Mar-2017 16:16 IA-64
Gdiplus.dll 5.2.6002.19749 1,753,088 09-Mar-2017 16:52 x86
Gdiplus.dll 5.2.6002.24072 1,753,088 09-Mar-2017 16:20 x86
Gdiplus.dll 6.0.6002.19749 1,842,176 09-Mar-2017 16:52 x86
Gdiplus.dll 6.0.6002.24072 1,842,176 09-Mar-2017 16:20 x86

__

For all supported x64-based versions

File name File version File size Date Time Platform
Gdiplus.dll 5.2.6002.19749 2,195,456 09-Mar-2017 17:09 x64
Gdiplus.dll 5.2.6002.24072 2,195,968 09-Mar-2017 16:32 x64
Gdiplus.dll 6.0.6002.19749 2,427,904 09-Mar-2017 17:09 x64
Gdiplus.dll 6.0.6002.24072 2,427,904 09-Mar-2017 16:32 x64
Gdiplus.dll 5.2.6002.19749 1,753,088 09-Mar-2017 16:52 x86
Gdiplus.dll 5.2.6002.24072 1,753,088 09-Mar-2017 16:20 x86
Gdiplus.dll 6.0.6002.19749 1,842,176 09-Mar-2017 16:52 x86
Gdiplus.dll 6.0.6002.24072 1,842,176 09-Mar-2017 16:20 x86

__

For all supported x86-based versions

File name File version File size Date Time Platform
Gdiplus.dll 5.2.6002.19749 1,753,088 09-Mar-2017 16:52 x86
Gdiplus.dll 5.2.6002.24072 1,753,088 09-Mar-2017 16:20 x86
Gdiplus.dll 6.0.6002.19749 1,842,176 09-Mar-2017 16:52 x86
Gdiplus.dll 6.0.6002.24072 1,842,176 09-Mar-2017 16:20 x86

Related

nessus 62
mscve 1
openvas 46
veracode 24
oraclelinux 2
ubuntucve 1
f5 2
symantec 1
slackware 1
debiancve 1
kaspersky 3
redhat 5
mskb 9
prion 1
centos 2
cve 1
fedora 6
mozilla 1
mageia 2
amazon 1
ubuntu 3
securityvulns 6
gentoo 1
ibm 7
freebsd 2
chrome 1
threatpost 1
suse 3
osv 1
debian 2
nessus
nessus
F5 Networks BIG-IP : libjpeg vulnerability (K59503294)
2016-05-24 00:00:00
KB4017094: Security Update for the libjpeg Information Disclosure Vulnerability for Microsoft Silverlight 5 (April 2017)
2017-04-11 00:00:00
Scientific Linux Security Update : libjpeg on SL5.x i386/x86_64 (20131210)
2013-12-11 00:00:00
mscve
mscve
libjpeg Information Disclosure Vulnerability
2017-04-11 07:00:00
openvas
openvas
Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4014794)
2017-04-12 00:00:00
Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4015383)
2017-04-12 00:00:00
CentOS Update for libjpeg CESA-2013:1804 centos5
2013-12-17 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 08:53:01
Sensitive Information Disclosure
2019-05-02 05:00:31
Null Pointer Dereference
2019-05-02 04:58:03
oraclelinux
oraclelinux
libjpeg security update
2013-12-09 00:00:00
libjpeg-turbo security update
2013-12-09 00:00:00
ubuntucve
ubuntucve
CVE-2013-6629
2013-11-18 00:00:00
f5
f5
K59503294 : libjpeg vulnerability CVE-2013-6629
2016-02-19 00:00:00
SOL59503294 - libjpeg vulnerability CVE-2013-6629
2016-02-19 00:00:00
symantec
symantec
libjpeg/libjpeg-turbo Library CVE-2013-6629 Memory Corruption Vulnerability
2013-11-12 00:00:00
slackware
slackware
[slackware-security] libjpeg
2013-12-17 03:49:12
debiancve
debiancve
CVE-2013-6629
2013-11-19 04:50:00
kaspersky
kaspersky
KLA11061 Information disclosure vulnerability in Microsoft Windows
2017-04-11 00:00:00
KLA11059 Multiple vulnerabilities in Microsoft Windows
2017-04-11 00:00:00
KLA11835 Multiple vulnerabilities in Microsoft Products (ESU)
2017-04-11 00:00:00
redhat
redhat
(RHSA-2013:1804) Moderate: libjpeg security update
2013-12-09 00:00:00
(RHSA-2013:1803) Moderate: libjpeg-turbo security update
2013-12-09 00:00:00
(RHSA-2014:0041) Important: rhev-hypervisor6 security update
2014-01-21 00:00:00
mskb
mskb
Security update for the libjpeg information disclosure vulnerability for Microsoft Silverlight 5: April 11, 2017
2017-04-11 07:00:00
Security update for the libjpeg information disclosure vulnerability in Windows Vista and Windows Server 2008: April 11, 2017
2017-04-11 07:00:00
Security update 2017-04-11
2017-04-11 07:00:00
prion
prion
Design/Logic Flaw
2013-11-19 04:50:00
centos
centos
libjpeg security update
2013-12-10 00:47:48
libjpeg security update
2013-12-10 01:01:49
cve
cve
CVE-2013-6629
2013-11-19 04:50:00
fedora
fedora
[SECURITY] Fedora 20 Update: mingw-libjpeg-turbo-1.3.1-1.fc20
2014-06-10 03:09:55
[SECURITY] Fedora 19 Update: libjpeg-turbo-1.2.90-3.fc19
2014-01-10 07:56:56
[SECURITY] Fedora 19 Update: mingw-libjpeg-turbo-1.3.1-1.fc19
2014-06-10 03:13:25
mozilla
mozilla
JPEG information leak — Mozilla
2013-12-10 00:00:00
mageia
mageia
Updated libjpeg packages fix vulnerabilities in libjpeg-turbo
2013-11-21 00:31:46
Updated chromium-browser-stable packages fix multiple vulnerabilities
2013-11-13 23:09:45
amazon
amazon
Medium: libjpeg-turbo
2013-12-17 21:32:00
ubuntu
ubuntu
libjpeg, libjpeg-turbo vulnerabilities
2013-12-19 00:00:00
Thunderbird vulnerabilities
2013-12-11 00:00:00
Firefox vulnerabilities
2013-12-11 00:00:00
securityvulns
securityvulns
bugs in IJG jpeg6b & libjpeg-turbo
2013-12-09 00:00:00
libjpeg multiple security vulnerabilities
2013-12-09 00:00:00
[ MDVSA-2013:274 ] libjpeg
2013-11-26 00:00:00
gentoo
gentoo
libjpeg-turbo: Multiple vulnerabilities
2016-06-05 00:00:00
ibm
ibm
Security Bulletin: Security vulnerability in IBM Jazz Team Server affects multiple IBM Rational products based on IBM Jazz technology (CVE-2014-2421, CVE-2013-6954, CVE-2013-6629, CVE-2014-0411, CVE-2014-0416)
2021-04-28 18:35:50
Security Bulletin: Multiple vulnerabilities in IBM SDK for Java included with IBM Forms Viewer
2018-06-16 19:52:50
Security Bulletin: SiteProtector System can be affected by several vulnerabilities in the IBM Java Runtime Environment (CVE-2013-6954, CVE-2013-6629, CVE-2014-2421, CVE-2014-0453, CVE-2014-1876, CVE-2014-4244, CVE-2014-4263) and in Tomcat (CVE-2014-0075)
2018-06-16 21:19:16
freebsd
freebsd
chromium -- multiple vulnerabilities
2013-11-12 00:00:00
mozilla -- multiple vulnerabilities
2013-12-09 00:00:00
chrome
chrome
Stable Channel Update
2013-11-12 00:00:00
threatpost
threatpost
12 Flaws Fixed in Google Chrome
2013-11-12 13:17:53
suse
suse
chromium: update to 31.0.1650.57 (important)
2013-11-27 20:04:35
Mozilla updates 2013/12 (important)
2013-12-13 15:04:36
chromium: 31.0.1650.57 version update (important)
2013-11-27 20:04:13
osv
osv
chromium-browser - several
2013-11-16 00:00:00
debian
debian
[SECURITY] [DSA 2797-1] chromium-browser security update
2013-11-17 15:42:38
[SECURITY] [DSA 2797-1] chromium-browser security update
2013-11-17 15:42:38

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.2%

JSON
Related for KB4015383
nessus62mscve1openvas46veracode24oraclelinux2ubuntucve1f52symantec1slackware1debiancve1kaspersky3redhat5mskb9prion1centos2cve1fedora6mozilla1mageia2amazon1ubuntu3securityvulns6gentoo1ibm7freebsd2chrome1threatpost1suse3osv1debian2