Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jpeg libjpeg - vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-39514
An issue exists in libjpeg up to and including 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39515
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39516
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in huffmandecoder.hpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39517
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39519
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData() located in blockbitmaprequester.cpp It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39520
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39518
An issue exists in libjpeg up to and including 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.
Jpeg Libjpeg
8.8
CVSSv3
CVE-2020-17541
Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the target service.
Libjpeg-turbo Libjpeg-turbo
7.1
CVSSv3
CVE-2020-14152
In IJG JPEG (aka libjpeg) prior to 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
Ijg Libjpeg
Debian Debian Linux 9.0
7.1
CVSSv3
CVE-2020-14153
In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.
Ijg Libjpeg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »