Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

libjpeg-turbo libjpeg-turbo 1.5.90 vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3
CVE-2018-14498
get_8bit_row in rdbmp.c in libjpeg-turbo up to and including 1.5.90 and MozJPEG up to and including 3.3.1 allows malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is o...
Mozilla MozjpegLibjpeg-turbo Libjpeg-turboFedoraproject Fedora 28Debian Debian Linux 8.0Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-1152
libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
Libjpeg-turbo Libjpeg-turbo 1.5.90Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 17.10Canonical Ubuntu Linux 12.04Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-11813
libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
Ijg Libjpeg 9c
6.5
CVSSv3
CVE-2018-11212
An issue exists in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted file.
Ijg Libjpeg 9aDebian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 12.04Netapp SnapmanagerNetapp Oncommand Workflow AutomationNetapp Oncommand Unified ManagerOracle Jdk 1.8.0Oracle Jdk 1.7.0Oracle Jre 8.0Oracle Jdk 11.0.1Redhat Satellite 5.8Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server 7.0Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-11213
An issue exists in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote malicious users to cause a denial of service (Segmentation fault) via a crafted file.
Ijg Libjpeg 9aDebian Debian Linux 8.0Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 17.10
6.5
CVSSv3
CVE-2018-11214
An issue exists in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote malicious users to cause a denial of service (Segmentation fault) via a crafted file.
Ijg Libjpeg 9aDebian Debian Linux 8.0Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 17.10
8.8
CVSSv3
CVE-2016-3616
The cjpeg utility in libjpeg allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.
Libjpeg-turbo Libjpeg-turbo 7.4Redhat Enterprise Linux 7.4Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 18.10Canonical Ubuntu Linux 12.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook