Libjpeg Ijg Libjpeg

stack.watch can email you when security vulnerabilities are reported in Ijg Libjpeg. You can add multiple products that you use with Libjpeg to create your own personal software stack watcher.

By the Year

In 2021 there have been 0 vulnerabilities in Ijg Libjpeg . Libjpeg did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 4 6.75

It may take a day or so for new Libjpeg vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.

Latest Ijg Libjpeg Security Vulnerabilities

libjpeg 9c has a large loop

CVE-2018-11813 7.5 - High - June 06, 2018

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

CVE-2018-11813 can be explotited with network access, and does not require authorization privledges or user interaction. This vulnerability is considered to have a low attack complexity. It has the highest possible exploitability rating (3.9). The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Excessive Iteration

An issue was discovered in libjpeg 9a

CVE-2018-11213 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2018-11213 can be explotited with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

An issue was discovered in libjpeg 9a

CVE-2018-11214 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2018-11214 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

An issue was discovered in libjpeg 9a and 9d

CVE-2018-11212 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

CVE-2018-11212 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Divide By Zero