Описание
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
Отчет
Red Hat Enterprise Linux 6 and further versions ships libjpeg-turbo which already contains the fixes, thus these products are not affected.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libjpeg | Out of support scope | ||
| Red Hat Enterprise Linux 6 | libjpeg-turbo | Not affected | ||
| Red Hat Enterprise Linux 7 | libjpeg-turbo | Not affected | ||
| Red Hat Enterprise Linux 8 | libjpeg-turbo | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7.1 High
CVSS3
Связанные уязвимости
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs. ...
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
EPSS
7.1 High
CVSS3