Buffer Overflow vulnerability in jfif_decode() function in rockcarry ffjpeg through version 1.0.0, allows local attackers to execute arbitrary code due to an issue with...
7.8CVSS
7.8AI Score
0.0004EPSS
ffjpeg commit caade60a69633d74100bd3c2528bddee0b6a1291 was discovered to contain a memory leak via...
6.5CVSS
6.4AI Score
0.001EPSS
In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. This is due to the incomplete patch for issue...
6.5CVSS
6.7AI Score
0.001EPSS
The function bitstr_tell at bitstr.c in ffjpeg commit 4ab404e has a NULL pointer...
5.5CVSS
5.4AI Score
0.001EPSS
A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load(). When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb->pdata and did not exit the program. So the program crashes when it tries to access the...
6.5CVSS
6.5AI Score
0.001EPSS
Global buffer overflow vulnerability exist in ffjpeg through 01.01.2021. It is similar to CVE-2020-23705. Issue is in the jfif_encode function at ffjpeg/src/jfif.c (line 708) could cause a Denial of Service by using a crafted jpeg...
6.5CVSS
6.4AI Score
0.001EPSS
Two Heap based buffer overflow vulnerabilities exist in ffjpeg through 01.01.2021. It is similar to CVE-2020-23852. Issues that are in the jfif_decode function at ffjpeg/src/jfif.c (line 552) could cause a Denial of Service by using a crafted jpeg...
6.5CVSS
6.2AI Score
0.001EPSS
A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg...
6.5CVSS
6.4AI Score
0.001EPSS
A stack-based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void ctxt, BMP pb) function at ffjpeg/src/jfif.c:513:28, which could cause a denial of service by submitting a malicious jpeg...
5.5CVSS
5.7AI Score
0.001EPSS
A heap based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void ctxt, BMP pb) function at ffjpeg/src/jfif.c (line 544 & line 545), which could cause a denial of service by submitting a malicious jpeg...
5.5CVSS
6.1AI Score
0.001EPSS
5.5CVSS
5.8AI Score
0.001EPSS
6.5CVSS
6.4AI Score
0.001EPSS
6.5CVSS
6.5AI Score
0.001EPSS
6.5CVSS
6.6AI Score
0.001EPSS
bitstr_tell at bitstr.c in ffjpeg through 2019-08-21 has a NULL pointer dereference related to...
6.5CVSS
6.4AI Score
0.001EPSS
6.5CVSS
6.4AI Score
0.001EPSS
ffjpeg before 2019-08-18 has a NULL pointer dereference in huffman_decode_step() at...
6.5CVSS
6.4AI Score
0.001EPSS
6.5CVSS
6.7AI Score
0.001EPSS
6.5CVSS
6.4AI Score
0.001EPSS
ffjpeg.dll in ffjpeg before 2018-08-22 allows remote attackers to cause a denial of service (FPE signal) via a progressive JPEG file that lacks an AC Huffman...
6.5CVSS
6.3AI Score
0.001EPSS