16 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-11213
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libjpeg 9a. The gettextgrayrow function in rdppm.c allows remote attackers to cause a denial of service Segmentation fault via a...
Oracle Linux 7 : libjpeg-turbo (ELSA-2019-2052)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2052 advisory. - Fix CVE-2018-14498 1687475 - Fix CVE-2018-11212 1586062 - Fix CVE-2016-3616 1318509, CVE-2018-11213 1589091 and CVE-2018-11214 1589110 Tenable has...
Ubuntu: Security Advisory (USN-5497-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5336-1: libjpeg9 vulnerabilities
Aladdin Mubaied discovered that the cjpeg utility in libjpeg9 did not properly validate the input image's size. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2016-3616 It was discovered that the cjpeg utility in libjpeg9 incorrectly handled...
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerability (CVE-2018-11214, CVE-2018-11213, CVE-2018-11212)
Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to security vulnerability. The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions...
NewStart CGSL CORE 5.05 / MAIN 5.05 : libjpeg-turbo Multiple Vulnerabilities (NS-SA-2019-0227)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libjpeg-turbo packages installed that are affected by multiple vulnerabilities: - The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute...
Amazon Linux 2 : libjpeg-turbo (ALAS-2019-1350)
The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 A divide by zero vulnerability has been discovered in libjpeg-turbo in allocsarray function of jmemmgr.c file...
Medium: libjpeg-turbo
Issue Overview: The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF.CVE-2018-11813 An...
Scientific Linux Security Update : libjpeg-turbo on SL7.x x86_64 (20190806)
Security Fixes : - libjpeg: NULL pointer dereference in cjpeg CVE-2016-3616 - libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get8bitrow in rdbmp.c leads to denial of service CVE-2018-14498 - libjpeg-turbo: Divide By Zero in allocsarray function in jmemmgr.c CVE-2018-11212 -...
libjpeg-turbo security update
1.2.90-8 - Fix CVE-2018-14498 1687475 1.2.90-7 - Fix CVE-2018-11212 1586062 - Fix CVE-2016-3616 1318509, CVE-2018-11213 1589091 and CVE-2018-11214 1589110 - Fix CVE-2018-11813 1591203...
Moderate: Red Hat Security Advisory: libjpeg-turbo security update
An update for libjpeg-turbo is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
[SECURITY] [DLA 1638-1] libjpeg-turbo security update
Package : libjpeg-turbo Version : 1:1.3.1-12+deb8u1 CVE ID : CVE-2016-3616 CVE-2018-1152 CVE-2018-11212 CVE-2018-11213 CVE-2018-11214 Debian Bug : 819969 902950 902176 Several vulnerabilities have been resolved in libjpeg-turbo, Debians default JPEG implemenation. CVE-2016-3616 The cjpeg utility ...
Debian: Security Advisory (DLA-1638-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-11213
An out-of-bound read vulnerability has been discovered in libjpeg-turbo when reading one row of pixels of a PGM file. An attacker could use this flaw to crash the application and cause a denial of service...
CVE-2018-11213
CVE-2018-11213 (libjpeg-9a): The issue resides in the get_text_gray_row function in rdppm.c of libjpeg-turbo/libjpeg, allowing remote attackers to cause a denial of service (segmentation fault) via a crafted file. This is a bounds/validation oversight in processing PPM data, leading to a crash. P...
CVE-2018-11213
An issue was discovered in libjpeg 9a. The gettextgrayrow function in rdppm.c allows remote attackers to cause a denial of service Segmentation fault via a crafted file...