CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
jpegoptim v1.5.2 was discovered to contain a heap overflow in the optimize function at jpegoptim.c. |
2Fedoraproject Jpegoptim Project2Fedora JpegoptimNov 21, 2024 Jul 1, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c. |
jpegoptim.c in jpegoptim 1.4.5 (fixed in 1.4.6) has an invalid use of realloc() and free(), which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. |