thorfdbg/libjpeg
GitHub
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 6.5 MEDIUM | — | ||
libjpeg commit db33a6e was discovered to contain a heap buffer overflow via LineBitmapRequester::EncodeRegion at linebitmaprequester.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. | |||
| 6.5 MEDIUM | — | ||
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. | |||
| 6.5 MEDIUM | — | ||
libjpeg commit 281daa9 was discovered to contain a segmentation fault via LineMerger::GetNextLowpassLine at linemerger.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. | |||
| 6.5 MEDIUM | — | ||
libjpeg commit 281daa9 was discovered to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. | |||
| 7.5 HIGH | — | ||
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame::ParseTrailer. | |||
| 5.5 MEDIUM | — | ||
libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG::ReadInternal. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS scan. | |||
| 5.5 MEDIUM | 4.3 MEDIUM | ||
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp. | |||
| 5.5 MEDIUM | 4.3 MEDIUM | ||
In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData() located in blockbitmaprequester.cpp It allows an attacker to cause Denial of Service. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service. | |||
| 6.5 MEDIUM | 4.3 MEDIUM | ||
An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service. | |||