CVE-2006-3005

Published: Jun 13, 2006Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is built without the -maxmem feature, which could allow context-dependent attackers to cause a denial of service (memory exhaustion) via a crafted JPEG file that exceeds the intended memory limits.

Affected (6)

Products: Gentoo: Media Libs Jpeg, Linux

2 products

Media Libs Jpeg

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Gentoo Media Libs Jpeg	Version 6b r2
Gentoo Media Libs Jpeg	Version 6b r3
Gentoo Media Libs Jpeg	Version 6b r4
Gentoo Media Libs Jpeg	Version 6b r5
Gentoo Media Libs Jpeg	Version 6b r6

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Gentoo Linux	All versions

References (10)

http://bugs.gentoo.org/show_bug.cgi?id=130889

Source: cve@mitre.org

http://secunia.com/advisories/20563

Source: cve@mitre.org

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200606-11.xml

Source: cve@mitre.org

PatchVendor Advisory

http://www.osvdb.org/26317

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/31451

Source: cve@mitre.org

http://bugs.gentoo.org/show_bug.cgi?id=130889

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/20563

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200606-11.xml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.osvdb.org/26317

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/31451

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.