Lucene search
K

10 matches found

Microsoft CVE
Microsoft CVE
added 2026/02/10 4:0 p.m.4 views

Red Hat, Inc. CVE-2023-2804: Heap Based Overflow libjpeg-turbo

A heap‑based buffer overflow exists in libjpeg‑turbo’s h2v2mergedupsampleinternal function when processing 12‑bit lossless JPEG images. An attacker could craft an image containing out‑of‑range 12‑bit samples that, when decompressed with merged upsampling enabled, may trigger a segmentation fault ...

6.5CVSS6.8AI score0.012EPSS
Exploits1
Intel
Intel
added 2024/02/13 12:0 a.m.66 views

Intel® Unison™ Software Advisory

Summary: Potential security vulnerabilities in some Intel® Unison™ software may allow denial of service or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-2804Non-Intel issued Description: Improper...

7.1CVSS6.7AI score0.012EPSS
Exploits1
NVD
NVD
added 2023/12/16 2:15 a.m.14 views

CVE-2023-31813

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-2804. Reason: This record is a duplicate of CVE-2023-2804. Notes: All CVE users should reference CVE-2023-2804 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

Exploits0
NVD
NVD
added 2023/05/25 10:15 p.m.16 views

CVE-2023-2804

A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2mergedupsampleinternal function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could cra...

6.5CVSS6.5AI score0.012EPSS
Exploits1References6
Chainguard
Chainguard
added 2023/05/25 10:15 p.m.2535 views

CVE-2023-2804 vulnerabilities

Vulnerabilities for packages: libjpeg-turbo...

6.5CVSS7.4AI score0.012EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/05/25 12:0 a.m.7 views

CVE-2023-2804

A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2mergedupsampleinternal function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could cra...

7AI score0.012EPSS
Exploits1References6
CVE
CVE
added 2023/05/25 12:0 a.m.2714 views

CVE-2023-2804

CVE-2023-2804 affects libjpeg-turbo; a heap-based buffer overflow in h2v2_merged_upsample_internal() of jdmrgext.c can be triggered when decoding 12-bit lossless JPEGs with out-of-range samples, leading to segmentation faults or buffer overflows and application crashes. The vulnerability requires...

6.5CVSS6.3AI score0.012EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2023/05/25 12:0 a.m.35 views

CVE-2023-2804

A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2mergedupsampleinternal function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could cra...

6.7AI score0.012EPSS
Exploits1References6
OSV
OSV
added 2023/05/25 12:0 a.m.66 views

CVE-2023-2804

A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2mergedupsampleinternal function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could cra...

6.5CVSS7.2AI score0.012EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/05/20 2:16 a.m.2 views

SUSE CVE-2023-2804

A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2mergedupsampleinternal function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could cra...

5.1CVSS7.3AI score0.012EPSS
Exploits1References3
Rows per page
Query Builder