Linux Distros Unpatched Vulnerability : CVE-2016-3616

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a...

Oracle Linux 7 : libjpeg-turbo (ELSA-2019-2052)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2052 advisory. - Fix CVE-2018-14498 1687475 - Fix CVE-2018-11212 1586062 - Fix CVE-2016-3616 1318509, CVE-2018-11213 1589091 and CVE-2018-11214 1589110 Tenable has...

USN-5336-1: libjpeg9 vulnerabilities

Aladdin Mubaied discovered that the cjpeg utility in libjpeg9 did not properly validate the input image's size. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2016-3616 It was discovered that the cjpeg utility in libjpeg9 incorrectly handled...

Security Bulletin: IBM Security Privileged Identity Manager is affected by a security vulnerability

Summary IBM Security Privileged Identity Manager has addressed the following security vulnerability. Vulnerability Details CVEID: CVE-2016-3616 DESCRIPTION: cjpeg is vulnerable to a denial of service, caused by a NULL pointer dereference in the libjpeg library. By persuading a victim to open a...

NewStart CGSL CORE 5.05 / MAIN 5.05 : libjpeg-turbo Multiple Vulnerabilities (NS-SA-2019-0227)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libjpeg-turbo packages installed that are affected by multiple vulnerabilities: - The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute...

EulerOS 2.0 SP2 : libjpeg-turbo (EulerOS-SA-2019-2407)

According to the versions of the libjpeg-turbo packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execu...

Amazon Linux 2 : libjpeg-turbo (ALAS-2019-1350)

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 A divide by zero vulnerability has been discovered in libjpeg-turbo in allocsarray function of jmemmgr.c file...

Medium: libjpeg-turbo

Issue Overview: The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 A divide by zero vulnerability has been discovered in libjpeg-turbo in allocsarray function o...

Medium: libjpeg-turbo

Issue Overview: The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF.CVE-2018-11813 An...

Scientific Linux Security Update : libjpeg-turbo on SL7.x x86_64 (20190806)

Security Fixes : - libjpeg: NULL pointer dereference in cjpeg CVE-2016-3616 - libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get8bitrow in rdbmp.c leads to denial of service CVE-2018-14498 - libjpeg-turbo: Divide By Zero in allocsarray function in jmemmgr.c CVE-2018-11212 -...

libjpeg-turbo security update

1.2.90-8 - Fix CVE-2018-14498 1687475 1.2.90-7 - Fix CVE-2018-11212 1586062 - Fix CVE-2016-3616 1318509, CVE-2018-11213 1589091 and CVE-2018-11214 1589110 - Fix CVE-2018-11813 1591203...

Moderate: Red Hat Security Advisory: libjpeg-turbo security update

An update for libjpeg-turbo is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

EulerOS Virtualization for ARM 64 3.0.2.0 : libjpeg-turbo (EulerOS-SA-2019-1628)

According to the versions of the libjpeg-turbo package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The libjpeg-turbo package contains a library of functions for manipulating JPEG images.Security Fixes:A divide b...

[SECURITY] [DLA 1638-1] libjpeg-turbo security update

Package : libjpeg-turbo Version : 1:1.3.1-12+deb8u1 CVE ID : CVE-2016-3616 CVE-2018-1152 CVE-2018-11212 CVE-2018-11213 CVE-2018-11214 Debian Bug : 819969 902950 902176 Several vulnerabilities have been resolved in libjpeg-turbo, Debians default JPEG implemenation. CVE-2016-3616 The cjpeg utility ...

Debian: Security Advisory (DLA-1638-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-3616

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file...

CVE-2016-3616

The CVE-2016-3616 issue affects the cjpeg utility in libjpeg/libjpeg-turbo, caused by a NULL pointer dereference in libjpeg that can lead to denial of service and potentially arbitrary code execution via a crafted JPEG. Multiple connected advisories confirm affected contexts (Debian, Red Hat, Cen...