Libjpeg Turbo

libjpeg-turbo

16 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (16)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-29390 2Fedoraproject Libjpeg Turbo 2Fedora Libjpeg Turbo Nov 21, 2024 Aug 22, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 libjpeg-turbo version 2.0.90 has a heap-based buffer over-read (2 bytes) in decompress_smooth_data in jdcoefct.c.
CVE-2023-2804 1Libjpeg Turbo 1Libjpeg Turbo Jan 16, 2025 May 25, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2_merged_upsample_internal() function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of...Show more A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2_merged_upsample_internal() function of jdmrgext.c file. The vulnerability can only be exploited with 12-bit data precision for which the range of the sample data type exceeds the valid sample range, hence, an attacker could craft a 12-bit lossless JPEG image that contains out-of-range 12-bit samples. An application attempting to decompress such image using merged upsampling would lead to segmentation fault or buffer overflows, causing an application to crash.Show less
CVE-2020-35538 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Aug 31, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.
CVE-2021-46822 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Jun 18, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap...Show more The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap-based buffer overflow in the get_word_rgb_row function in rdppm.c.Show less
CVE-2020-17541 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Jun 1, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the ta...Show more Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the target service.Show less
CVE-2021-20205 2Fedoraproject Libjpeg Turbo 2Fedora Libjpeg Turbo Nov 21, 2024 Mar 10, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.
CVE-2020-13790 2Libjpeg Turbo Mozilla 2Libjpeg Turbo Mozjpeg Nov 21, 2024 Jun 3, 2020 N/A· v4 8.1 HIGH· v3 5.8 MEDIUM· v2 libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file.
CVE-2019-13960 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Jul 18, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG image containing incorrect width and height values in the image header. NOTE: the vendor's expectation, for us...Show more In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG image containing incorrect width and height values in the image header. NOTE: the vendor's expectation, for use cases in which this memory usage would be a denial of service, is that the application should interpret libjpeg warnings as fatal errors (aborting decompression) and/or set limits on resource consumption or image sizesShow less
CVE-2018-14498 5Debian FedoraprojectLibjpeg Turbo+2 more 5Debian Linux FedoraLeap+2 more Nov 21, 2024 Mar 7, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or...Show more get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries.Show less
CVE-2018-20330 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Dec 21, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
CVE-2018-19664 1Libjpeg Turbo 1Libjpeg Turbo Nov 21, 2024 Nov 29, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
CVE-2018-1152 3Canonical DebianLibjpeg Turbo 3Debian Linux Libjpeg TurboUbuntu Linux Nov 21, 2024 Jun 18, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
CVE-2017-15232 1Libjpeg Turbo 1Libjpeg Turbo May 13, 2026 Oct 11, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file.
CVE-2014-9092 3Canonical FedoraprojectLibjpeg Turbo 3Fedora Libjpeg TurboUbuntu Linux May 13, 2026 Oct 10, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker.
CVE-2016-3616 4Canonical DebianLibjpeg Turbo+1 more 4Debian Linux Enterprise LinuxLibjpeg Turbo+1 more May 13, 2026 Feb 13, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.
CVE-2013-6629 9Artifex CanonicalDebian+6 more 11Chrome Debian LinuxFedora+8 more Apr 29, 2026 Nov 19, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of componen...Show more The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.Show less