Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libjpeg vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-13960
In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG image containing incorrect width and height values in the image header. NOTE: the vendor's expectation, for use cases in which this memory usage would be a denial of...
Libjpeg-turbo Libjpeg-turbo 2.0.2
8.1
CVSSv3
CVE-2020-13790
libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file.
Libjpeg-turbo Libjpeg-turbo 2.0.4
Mozilla Mozjpeg 4.0.0
6.5
CVSSv3
CVE-2021-20205
Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.
Libjpeg-turbo Libjpeg-turbo 2.0.90
Fedoraproject Fedora 34
7.5
CVSSv3
CVE-2022-37768
libjpeg commit 281daa9 exists to contain an infinite loop via the component Frame::ParseTrailer.
Jpeg Libjpeg -
6.5
CVSSv3
CVE-2022-37769
libjpeg commit 281daa9 exists to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted file.
Jpeg Libjpeg -
7.1
CVSSv3
CVE-2020-14153
In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.
Ijg Libjpeg
6.5
CVSSv3
CVE-2021-39517
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39518
An issue exists in libjpeg up to and including 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39514
An issue exists in libjpeg up to and including 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
6.5
CVSSv3
CVE-2021-39515
An issue exists in libjpeg up to and including 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an malicious user to cause Denial of Service.
Jpeg Libjpeg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »