1400 matches found
CVE-2022-31796
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use...
CVE-2022-32201
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp...
CVE-2022-32978
There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS scan...
CVE-2021-39515
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service...
CVE-2021-39520
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service...
CVE-2021-39519
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData located in blockbitmaprequester.cpp It allows an attacker to cause Denial of Service...
CVE-2021-39514
An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service...
CVE-2021-39517
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service...
CVE-2021-39518
An issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion in linebuffer.cpp has a heap-based buffer overflow...
CVE-2021-39516
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service...
CVE-2018-5252
libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the getrawsampleint function in imagew-main.c...
Oracle Linux 8 : libjpeg-turbo (ELSA-2025-7540)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7540 advisory. 1.5.3-14 - updated previous fix RHEL-87364 1.5.3-13 - fix CVE-2020-13790: heap-based buffer over-read in getrgbrow RHEL-87364 Tenable has extracted the precedin...
libjpeg-turbo security update
1.5.3-14 - updated previous fix RHEL-87364 1.5.3-13 - fix CVE-2020-13790: heap-based buffer over-read in getrgbrow RHEL-87364...
RHSA-2025:7540 Red Hat Security Advisory: libjpeg-turbo security update
Bulletin has no description...
Moderate: Red Hat Security Advisory: libjpeg-turbo security update
An update for libjpeg-turbo is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c
A vulnerability was found in libjpeg-turbo, where a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...
RHEL 8 : libjpeg-turbo (RHSA-2025:7540)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7540 advisory. The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the...
Alibaba Cloud Linux 3 : 0150: libjpeg-turbo (ALINUX3-SA-2023:0150)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0150 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-46822: The PPM reader in libjpeg-turbo...
ALSA-2025:7540 Moderate: libjpeg-turbo security update
The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fixes: libjpeg-turbo:...
Alibaba Cloud Linux 3 : 0105: libjpeg-turbo (ALINUX3-SA-2024:0105)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0105 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-29390: libjpeg-turbo version 2.0.90 has a...