CVE-2021-20205

Опубликовано: 10 мар. 2021

Источник: redhat

CVSS3: 6.5

Описание

Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.

A flaw was found in libjpeg-turbo (versions 2.0.91 and 2.0.90) and is vulnerable to a denial of service issue caused by a divide by zero when processing a crafted GIF image. The highest threat from this vulnerabilityis to system availability.

Отчет

This flaw does not affect versions of libjpeg-turbo shipped with Red Hat Enterprise Linux versions 6, 7, or 8. Additionally, it is not in the library, only the cjpeg utility.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	libjpeg-turbo	Not affected
Red Hat Enterprise Linux 7	libjpeg-turbo	Not affected
Red Hat Enterprise Linux 8	libjpeg-turbo	Not affected
Red Hat Enterprise Linux 9	libjpeg-turbo	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-369

https://bugzilla.redhat.com/show_bug.cgi?id=1937385libjpeg-turbo: DoS via open crafted GIF

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-20205

CVSS3: 6.5

ubuntu

почти 5 лет назад

Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.

CVE-2021-20205

CVSS3: 6.5

nvd

почти 5 лет назад

Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.

CVE-2021-20205

CVSS3: 6.5

debian

почти 5 лет назад

Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of ...

GHSA-jxcf-352f-vj82

github

больше 3 лет назад

Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image.

6.5 Medium

CVSS3