46 matches found
Code injection
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl...
Code injection
JPEGDEC commit be4843c was discovered to contain a segmentation fault via TIFFSHORT at /src/jpeg.inl...
Buffer overflow
JPEGDEC commit be4843c was discovered to contain a global buffer overflow via JPEGDecodeMCU at /src/jpeg.inl...
Buffer overflow
JPEGDEC commit be4843c was discovered to contain a global buffer overflow via ucDitherBuffer at /src/jpeg.inl...
Code injection
JPEGDEC commit be4843c was discovered to contain a FPE via TIFFSHORT at /src/jpeg.inl...
Design/Logic Flaw
JPEGDEC commit be4843c was discovered to contain a segmentation fault via fseek at /libio/fseek.c...
CVE-2022-35003
JPEGDEC commit be4843c was discovered to contain a global buffer overflow via ucDitherBuffer at /src/jpeg.inl...
CVE-2022-35004
JPEGDEC commit be4843c was discovered to contain a FPE via TIFFSHORT at /src/jpeg.inl...
CVE-2022-35004
JPEGDEC commit be4843c was discovered to contain a FPE via TIFFSHORT at /src/jpeg.inl...
CVE-2022-35004
CVE-2022-35004 concerns the JPEGDEC library. Multiple connected sources confirm a fault in the TIFFSHORT handling within /src/jpeg.inl, caused by a floating-point exception (FPE) that constitutes the underlying vulnerability. The NVD entry specifies a CVSS v3.1 base score of 5.5 (Medium) with Loc...
CVE-2022-35003
JPEGDEC commit be4843c contains a global buffer overflow in ucDitherBuffer (src/jpeg.inl). This affects the JPEGDEC decoder and is reflected in CVE-2022-35003 with a CVSS v3.1 base score of 7.8 (HIGH) — local attack, no privileges required, user interaction needed, and potential high impact to co...
CVE-2022-35003
JPEGDEC commit be4843c was discovered to contain a global buffer overflow via ucDitherBuffer at /src/jpeg.inl...
CVE-2022-35002
JPEGDEC commit be4843c was discovered to contain a segmentation fault via TIFFSHORT at /src/jpeg.inl...
CVE-2022-35002
JPEGDEC commit be4843c was discovered to contain a segmentation fault via TIFFSHORT at /src/jpeg.inl...
CVE-2022-35002
CVE-2022-35002 relates to the JPEGDEC project, where a segmentation fault was discovered in the TIFFSHORT path of the internal file /src/jpeg.inl (commit be4843c). The vulnerability affects JPEGDEC and can impact availability (per CVSS: LOCAL access, LOW complexity, user interaction required, hig...
CVE-2022-35000
CVE-2022-35000 concerns JPEGDEC, a JPEG decoder. A segmentation fault via fseek in /libio/fseek.c (commit be4843c) is described as the vulnerability. Affected software: JPEGDEC. Root cause: segmentation fault triggered by fseek. Impact: availability disruption (CVSS v3.1 indicates MEDIUM base imp...
CVE-2022-35000
JPEGDEC commit be4843c was discovered to contain a segmentation fault via fseek at /libio/fseek.c...
CVE-2022-35000
JPEGDEC commit be4843c was discovered to contain a segmentation fault via fseek at /libio/fseek.c...
CVE-2022-34999
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl...
CVE-2022-34999
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl...