HIGH8.8CVE-2020-17541Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. from 0, < 1:2.0.5-1
from 0, < 1:1.4.2-1
from 0, < 1:1.3.1-12+deb8u1
HIGH8.1libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file.
from 0, < 1:2.0.5-1
HIGH7.8libjpeg-turbo - security update
from 0, < 1:1.5.1-2+deb9u2
HIGH7.8libjpeg-turbo - security update
from 0, < 1:2.0.5-1
HIGH7.5libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
from 0, < 1:2.0.5-1
HIGH7.1In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly cau…
from 0, < 1:1.5.2-1
MEDIUM6.5libjpeg-turbo - security update
from 0, < 1:1.3.1-12+deb8u2
MEDIUM6.5libjpeg-turbo - security update
from 0, < 1:2.0.5-1
MEDIUM6.5libjpeg-turbo - security update
from 0, < 1:2.0.5-1
MEDIUM6.5libjpeg-turbo - security update
from 0, < 1:1.5.1-2+deb9u1
MEDIUM6.5An issue was discovered in libjpeg 9a.
from 0, < 1:1.4.2-1
MEDIUM6.5An issue was discovered in libjpeg 9a.
from 0, < 1:1.4.2-1
MEDIUM6.5An issue was discovered in libjpeg 9a and 9d.
from 0, < 1:1.4.2-1
MEDIUM6.5libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file.
from 0, < 1:2.0.5-1
MEDIUM6.5libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker.
from 0, < 1:1.3.1-11
MEDIUM5.5A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.
from 0, < 1:2.0.6-1
MEDIUM5.5The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer a…
from 0
—The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does no…
from 0, < 1.3.0-3
—openjdk-7 - security update
from 0, < 1.3.0-3