Ijg Libjpeg
By the Year
In 2022 there have been 1 vulnerability in Ijg Libjpeg with an average score of 6.5 out of ten. Libjpeg did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2022 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2022 | 1 | 6.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 4 | 6.75 |
It may take a day or so for new Libjpeg vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Ijg Libjpeg Security Vulnerabilities
In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service
CVE-2022-31620
6.5 - Medium
- May 25, 2022
In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan.
Buffer Overflow
libjpeg 9c has a large loop
CVE-2018-11813
7.5 - High
- June 06, 2018
libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.
Excessive Iteration
An issue was discovered in libjpeg 9a and 9d
CVE-2018-11212
6.5 - Medium
- May 16, 2018
An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.
Divide By Zero
An issue was discovered in libjpeg 9a
CVE-2018-11213
6.5 - Medium
- May 16, 2018
An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
An issue was discovered in libjpeg 9a
CVE-2018-11214
6.5 - Medium
- May 16, 2018
An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Debian Linux or by Ijg? Click the Watch button to subscribe.
