Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libjpeg vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2022-32978
There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg prior to 1.64 via an empty JPEG-LS scan.
Jpeg Libjpeg
4.3
CVSSv2
CVE-2022-32201
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp.
Libjpeg Project Libjpeg 1.63
4.3
CVSSv2
CVE-2022-32202
In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp.
Libjpeg Project Libjpeg 1.63
4.3
CVSSv2
CVE-2022-31796
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.
Jpeg Libjpeg 1.63
4.3
CVSSv2
CVE-2022-31620
In libjpeg prior to 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan.
Libjpeg Project Libjpeg
6.8
CVSSv2
CVE-2021-43581
An Out-of-Bounds Read vulnerability exists when reading a U3D file using Open Design Alliance PRC SDK prior to 2022.11. The specific issue exists within the parsing of U3D files. Incorrect use of the LibJpeg source manager inside the U3D library, and crafted data in a U3D file, c...
Opendesign Prc Sdk
6.8
CVSSv2
CVE-2021-37972
Out of bounds read in libjpeg-turbo in Google Chrome before 94.0.4606.54 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.3
CVSSv2
CVE-2021-39514
An issue exists in libjpeg up to and including 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
4.3
CVSSv2
CVE-2021-39520
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
4.3
CVSSv2
CVE-2021-39518
An issue exists in libjpeg up to and including 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.
Jpeg Libjpeg
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »