Search CVE reports
11 – 20 of 44 results
CVE-2022-32201
Medium priorityIn libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Needs evaluation | Vulnerable | Vulnerable | — | — |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2022-31796
Low prioritylibjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Vulnerable | Vulnerable | Vulnerable | — | — |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2022-31620
Low priorityIn libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically...
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Needs evaluation | Needs evaluation | Needs evaluation | — | — |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39520
Medium priorityAn issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39519
Medium priorityAn issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData() located in blockbitmaprequester.cpp It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39518
Medium priorityAn issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39517
Medium priorityAn issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39516
Medium priorityAn issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39515
Medium priorityAn issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2021-39514
Low priorityAn issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| libjpeg | Not affected | Not affected | Needs evaluation | Not in release | Ignored |
| libjpeg-turbo | Not affected | Not affected | Not affected | Not affected | Not affected |
| libjpeg6b | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
| libjpeg9 | Not affected | Not affected | Not affected | Not affected | Not affected |