CVEs referencing
https://lists.debian.org/debian-lts-announce/2019/01/msg00015.html

CVE-2016-3616

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.
Max Base Score
8.8
Published
2017-02-13
Updated
2019-08-06
EPSS
1.66%

CVE-2018-1152

libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
Max Base Score
6.5
Published
2018-06-18
Updated
2020-07-31
EPSS
1.04%

CVE-2018-11212

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.
Max Base Score
6.5
Published
2018-05-16
Updated
2022-04-20
EPSS
0.58%

CVE-2018-11213

An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
Max Base Score
6.5
Published
2018-05-16
Updated
2019-10-03
EPSS
0.74%

CVE-2018-11214

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
Max Base Score
6.5
Published
2018-05-16
Updated
2019-10-03
EPSS
0.74%
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close