Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ijg libjpeg vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2020-14152
In IJG JPEG (aka libjpeg) prior to 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
Ijg Libjpeg
Debian Debian Linux 9.0
7.1
CVSSv3
CVE-2020-14153
In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.
Ijg Libjpeg
7.5
CVSSv3
CVE-2018-11813
libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
Ijg Libjpeg 9c
6.5
CVSSv3
CVE-2018-11212
An issue exists in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted file.
Ijg Libjpeg 9a
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Netapp Oncommand Unified Manager
Netapp Oncommand Workflow Automation
Netapp Snapmanager
Oracle Jdk 11.0.1
Oracle Jre 8.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Satellite 5.8
Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-11213
An issue exists in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote malicious users to cause a denial of service (Segmentation fault) via a crafted file.
Ijg Libjpeg 9a
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
6.5
CVSSv3
CVE-2018-11214
An issue exists in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote malicious users to cause a denial of service (Segmentation fault) via a crafted file.
Ijg Libjpeg 9a
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started