USN-5631-1: libjpeg-turbo vulnerabilities

🗓️ 22 Sep 2022 16:49:20Reported by UbuntuType

ubuntu

ubuntu🔗 ubuntu.com👁 80 Views

libjpeg-turbo security vulnerabilities in Ubunt

Reporter	Title	Published	Views	Family All 324
IBM Security Bulletins	Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in libjpeg	7 Dec 202322:45	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 24.0.1-IF004 (June 2025)	2 Jul 202507:00	–	ibm
IBM Security Bulletins	Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities	3 Jun 202511:35	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libjpeg affect IBM BladeCenter Advanced Management Module (AMM)	3 Oct 201816:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Transform Services for IBM i is vulnerable to denial of service, buffer overflow, and allowing attacker to obtain sensitive information due to multiple vulnerabilities.	17 Nov 202215:02	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security QRadar Event and Flow Exporter App is vulnerable to using components with known vulnerabilities (CVE-2021-31535, CVE-2020-17541)	16 Jun 202218:26	–	ibm
IBM Security Bulletins	Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for June 2025.	16 Jul 202509:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in libjpeg	7 Dec 202322:45	–	ibm
IBM Security Bulletins	Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for January 2026.	23 Feb 202609:25	–	ibm
Tenable Nessus	Amazon Linux 2 : libjpeg-turbo (ALAS-2019-1350)	7 Nov 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	18.04	amd64	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_amd64.deb
Ubuntu	18.04	arm64	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_arm64.deb
Ubuntu	18.04	armhf	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_armhf.deb
Ubuntu	18.04	i386	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_i386.deb
Ubuntu	18.04	ppc64el	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_ppc64el.deb
Ubuntu	18.04	s390x	libjpeg-turbo-progs	1.5.2-0ubuntu5.18.04.6	libjpeg-turbo-progs_1.5.2-0ubuntu5.18.04.6_s390x.deb
Ubuntu	20.04	amd64	libjpeg-turbo-progs	2.0.3-0ubuntu1.20.04.3	libjpeg-turbo-progs_2.0.3-0ubuntu1.20.04.3_amd64.deb
Ubuntu	20.04	arm64	libjpeg-turbo-progs	2.0.3-0ubuntu1.20.04.3	libjpeg-turbo-progs_2.0.3-0ubuntu1.20.04.3_arm64.deb
Ubuntu	20.04	armhf	libjpeg-turbo-progs	2.0.3-0ubuntu1.20.04.3	libjpeg-turbo-progs_2.0.3-0ubuntu1.20.04.3_armhf.deb
Ubuntu	20.04	i386	libjpeg-turbo-progs	2.0.3-0ubuntu1.20.04.3	libjpeg-turbo-progs_2.0.3-0ubuntu1.20.04.3_i386.deb

22 Sep 2022 16:49Current

6.6Medium risk

Vulners AI Score6.6

CVSS 26.8

CVSS 37.5

CVSS 3.18.8

EPSS0.00494

ubuntu 20.04 lts ubuntu 18.04 esm libjpeg-turbo jpeg files denial of service eof characters malformed jpeg files cve-2018-11813 cve-2020-17541 cve-2020-35538 ppm files arbitrary code cve-2021-46822 unix