Libjpeg Ijg Libjpeg

Do you want an email whenever new security vulnerabilities are reported in Ijg Libjpeg?

By the Year

In 2024 there have been 0 vulnerabilities in Ijg Libjpeg . Libjpeg did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 0 0.00
2022 1 6.50
2021 0 0.00
2020 2 7.10
2019 0 0.00
2018 4 6.75

It may take a day or so for new Libjpeg vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Ijg Libjpeg Security Vulnerabilities

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service

CVE-2022-31620 6.5 - Medium - May 25, 2022

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan.

assertion failure

In IJG JPEG (aka libjpeg)

CVE-2020-14153 7.1 - High - June 15, 2020

In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.

Out-of-bounds Read

In IJG JPEG (aka libjpeg) before 9d

CVE-2020-14152 7.1 - High - June 15, 2020

In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.

Resource Exhaustion

libjpeg 9c has a large loop

CVE-2018-11813 7.5 - High - June 06, 2018

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

Excessive Iteration

An issue was discovered in libjpeg 9a and 9d

CVE-2018-11212 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

Divide By Zero

An issue was discovered in libjpeg 9a

CVE-2018-11213 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

An issue was discovered in libjpeg 9a

CVE-2018-11214 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Debian Linux or by Ijg? Click the Watch button to subscribe.

Ijg
Vendor

Ijg Libjpeg
Product

subscribe