Jbig2dec@0.13 Security Vulnerabilities and Issues — Jbig2dec@0.13 CVE List

Lucene search

ArtifexJbig2dec0.13

4 matches found

CVE•added 2017/04/19 5:59 p.m.•91 views

CVE-2017-7976

Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of an integer overflow in the jbig2_image_compose function in jbig2_image.c during operations on a crafted .jb2 file, leading to a denial of service (application crash) or disclosure of sensitive information from process memory.

7.1CVSS6.8AI score0.00178EPSS

CVE•added 2017/04/19 4:59 p.m.•86 views

CVE-2017-7975

Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted JBIG2 file, leading to a denial of service (application crash) or possibly execution of arbitrary cod...

7.8CVSS7.1AI score0.00159EPSS

CVE•added 2017/04/17 12:59 a.m.•84 views

CVE-2017-7885

Artifex jbig2dec 0.13 has a heap-based buffer over-read leading to denial of service (application crash) or disclosure of sensitive information from process memory, because of an integer overflow in the jbig2_decode_symbol_dict function in jbig2_symbol_dict.c in libjbig2dec.a during operation on a ...

7.1CVSS6.8AI score0.00287EPSS

CVE•added 2017/05/24 5:29 a.m.•75 views

CVE-2017-9216

libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2_huffman_get function in jbig2_huffman.c. For example, the jbig2dec utility will crash (segmentation fault) when parsing an invalid file.

6.5CVSS6.4AI score0.01419EPSS