The get_dht function in jdmarker.c in libjpeg-turbo up to and including 1.3.0, as used in Google Chrome prior to 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table (DHT) JPEG markers, which allows remote malicious users to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome 31.0.1650.22 |
||
google chrome 31.0.1650.45 |
||
google chrome 31.0.1650.11 |
||
google chrome 31.0.1650.33 |
||
google chrome 31.0.1650.32 |
||
google chrome 31.0.1650.31 |
||
google chrome 31.0.1650.28 |
||
google chrome 31.0.1650.26 |
||
google chrome 31.0.1650.4 |
||
google chrome 31.0.1650.2 |
||
google chrome 31.0.1650.16 |
||
google chrome 31.0.1650.39 |
||
google chrome 31.0.1650.41 |
||
google chrome 31.0.1650.38 |
||
google chrome 31.0.1650.5 |
||
google chrome |
||
google chrome 31.0.1650.36 |
||
google chrome 31.0.1650.43 |
||
google chrome 31.0.1650.34 |
||
google chrome 31.0.1650.13 |
||
google chrome 31.0.1650.44 |
||
google chrome 31.0.1650.23 |
||
google chrome 31.0.1650.17 |
||
google chrome 31.0.1650.19 |
||
google chrome 31.0.1650.20 |
||
google chrome 31.0.1650.14 |
||
google chrome 31.0.1650.10 |
||
google chrome 31.0.1650.46 |
||
google chrome 31.0.1650.7 |
||
google chrome 31.0.1650.37 |
||
google chrome 31.0.1650.29 |
||
google chrome 31.0.1650.8 |
||
google chrome 31.0.1650.25 |
||
google chrome 31.0.1650.9 |
||
google chrome 31.0.1650.3 |
||
google chrome 31.0.1650.12 |
||
google chrome 31.0.1650.15 |
||
google chrome 31.0.1650.30 |
||
google chrome 31.0.1650.35 |
||
google chrome 31.0.1650.27 |
||
google chrome 31.0.1650.42 |
||
google chrome 31.0.1650.6 |
||
google chrome 31.0.1650.0 |
||
google chrome 31.0.1650.18 |