RHEL 6 : libjpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libjpeg: null pointer dereference in cjpeg CVE-2016-3616 - An issue was discovered in libjpeg 9a. The...

Ubuntu 16.04 ESM : Libjpeg6b vulnerabilities (USN-5497-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5497-2 advisory. USN-5497-1 fixed vulnerabilities in Libjpeg6b. This update provides the corresponding updates for Ubuntu 16.04 ESM. Tenable has extracted the preceding...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-199)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-199 advisory. RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file CVE-2023-1992 LISP dissector large loop in Wiresha...

SUSE CVE-2023-1993

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-038)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-038 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...

K23406572: libjpeg vulnerabilities CVE-2016-3616 CVE-2018-11213 CVE-2018-11214 CVE-2018-11813 CVE-2018-14498

Security Advisory Description CVE-2016-3616 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file. CVE-2018-11213 An issue was discovered in libjpeg 9a. The gettextgrayrow...

SUSE CVE-2017-12587

ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c...

Amazon Linux 2022 : wireshark-cli, wireshark-devel (ALAS2022-2022-079)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-079 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...

Debian: Security Advisory (DLA-2849-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:1566-1 Security update for wireshark

This update for wireshark fixes the following issues: - Update to Wireshark 3.4.10: - CVE-2021-39920: IPPUSB dissector crash bsc1192830. - CVE-2021-39921: Modbus dissector crash bsc1192830. - CVE-2021-39922: C12.22 dissector crash bsc1192830. - CVE-2021-39924: Bluetooth DHT dissector large loop...

DEBIAN-CVE-2020-14378

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the movedesc function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause movedesc to get stuck in a 4,294,967,295-count iteration loop. Depending on how vhostcrypto is...

Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2018-1298)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL CORE 5.05 / MAIN 5.05 : libjpeg-turbo Multiple Vulnerabilities (NS-SA-2019-0227)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libjpeg-turbo packages installed that are affected by multiple vulnerabilities: - The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute...

CVE-2019-18455

Removed by vendor...

Security update for libjpeg-turbo (moderate)

openSUSE Security Update: Security update for libjpeg-turbo Announcement ID: openSUSE-SU-2019:1118-1 Rating: moderate References: 1096209 1098155 1128712 Cross-References: CVE-2018-1152 CVE-2018-11813 CVE-2018-14498 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilities ...

CVE-2018-18651

An issue was discovered in Xpdf 4.00. catalog-getNumPages in AcroForm.cc allows attackers to launch a denial of service hang caused by large loop via a specific pdf file, as demonstrated by pdftohtml. This is mainly caused by a large number after the /Count field in the file...

CVE-2018-11813

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...

ALPINE-CVE-2018-11813

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...

Code injection

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...

CVE-2018-11813

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...