Libjpeg Ijg Libjpeg

Do you want an email whenever new security vulnerabilities are reported in Ijg Libjpeg?

By the Year

In 2022 there have been 1 vulnerability in Ijg Libjpeg with an average score of 6.5 out of ten. Libjpeg did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2022 as compared to last year.

Year Vulnerabilities Average Score
2022 1 6.50
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 4 6.75

It may take a day or so for new Libjpeg vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Ijg Libjpeg Security Vulnerabilities

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service

CVE-2022-31620 6.5 - Medium - May 25, 2022

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically coded sequential scan.

Buffer Overflow

libjpeg 9c has a large loop

CVE-2018-11813 7.5 - High - June 06, 2018

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

Excessive Iteration

An issue was discovered in libjpeg 9a and 9d

CVE-2018-11212 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

Divide By Zero

An issue was discovered in libjpeg 9a

CVE-2018-11213 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

An issue was discovered in libjpeg 9a

CVE-2018-11214 6.5 - Medium - May 16, 2018

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Debian Linux or by Ijg? Click the Watch button to subscribe.

Ijg
Vendor

Ijg Libjpeg
Product

subscribe