3 matches found
CVE-2020-8175
Uncontrolled resource consumption in jpeg-js before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image...
08cms (=1.0.0), 18a58t9c-upload (>=1.0.0 <=1.0.3) +3404 more potentially affected by CVE-2020-8175 via jpeg-js (>=0.0.1 <=0.3.7)
jpeg-js NPM version =0.0.1, =1.0.0, =0.1.0, =1.0.0, =1.0.0, =0.0.2, =0.0.1, =0.0.3, =1.0.0, =0.0.2, =2.2.1, =3.4.7 - @lan/uni-libs =0.0.3 and more Source cves: CVE-2020-8175 Source advisory: OSV:GHSA-W7Q9-P3JQ-FMHM...
CVE-2020-8175
CVE-2020-8175 affects jpeg-js before 0.4.0, where Uncontrolled resource consumption can cause a denial of service via specially crafted JPEG images. Root cause: memory allocation due to image processing and EXIF data handling leading to excessive pixel allocation. In practice the impact is DoS wi...