CVE-2018-11214

Опубликовано: 16 мая 2018

Источник: debian

EPSS Низкий

Описание

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libjpeg9	fixed	1:9c-1		package
libjpeg-turbo	fixed	1:1.4.2-1		package

Примечания

https://github.com/libjpeg-turbo/libjpeg-turbo/commit/6709e4a0cfa44d4f54ee8ad05753d4aa9260cb91 (1.4.2)

EPSS

Процентиль: 77%

0.01054

Низкий

Связанные уязвимости

CVE-2018-11214

CVSS3: 6.5

ubuntu

больше 7 лет назад

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2018-11214

CVSS3: 5.3

redhat

больше 7 лет назад

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

CVE-2018-11214

CVSS3: 6.5

nvd

больше 7 лет назад

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

GHSA-c6rg-3w94-c827

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

ELSA-2019-2052

oracle-oval

больше 6 лет назад

ELSA-2019-2052: libjpeg-turbo security update (MODERATE)

EPSS

Процентиль: 77%

0.01054

Низкий