Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockcarry ffjpeg vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-24222
Buffer Overflow vulnerability in jfif_decode() function in rockcarry ffjpeg through version 1.0.0, allows local malicious users to execute arbitrary code due to an issue with ALIGN.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2019-19887
bitstr_tell at bitstr.c in ffjpeg through 2019-08-21 has a NULL pointer dereference related to jfif_encode.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2019-19888
jfif_decode in jfif.c in ffjpeg through 2019-08-21 has a divide-by-zero error.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2020-13438
ffjpeg through 2020-02-24 has an invalid read in jfif_encode in jfif.c.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2020-23705
A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows malicious users to cause a Denial of Service (DOS) via a crafted jpeg file.
Rockcarry Ffjpeg
5.5
CVSSv3
CVE-2020-23851
A stack-based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c:513:28, which could cause a denial of service by submitting a malicious jpeg image.
Rockcarry Ffjpeg
5.5
CVSSv3
CVE-2020-23852
A heap based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c (line 544 & line 545), which could cause a denial of service by submitting a malicious jpeg image.
Rockcarry Ffjpeg
5.5
CVSSv3
CVE-2021-34122
The function bitstr_tell at bitstr.c in ffjpeg commit 4ab404e has a NULL pointer dereference.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2020-13439
ffjpeg through 2020-02-24 has a heap-based buffer over-read in jfif_decode in jfif.c.
Rockcarry Ffjpeg
6.5
CVSSv3
CVE-2020-13440
ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c.
Rockcarry Ffjpeg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »