Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2019:1118-1

Опубликовано: 02 апр. 2019
Источник: suse-cvrf

Описание

Security update for libjpeg-turbo

This update for libjpeg-turbo fixes the following issues:

The following security vulnerabilities were addressed:

  • CVE-2018-14498: Fixed a heap-based buffer over read in get_8bit_row function which could allow to an attacker to cause denial of service (bsc#1128712).
  • CVE-2018-11813: Fixed the end-of-file mishandling in read_pixel in rdtarga.c, which allowed remote attackers to cause a denial-of-service via crafted JPG files due to a large loop (bsc#1096209)
  • CVE-2018-1152: Fixed a denial of service in start_input_bmp() rdbmp.c caused by a divide by zero when processing a crafted BMP image (bsc#1098155)

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.0
libjpeg-turbo-1.5.3-lp150.4.3.2
libjpeg62-62.2.0-lp150.4.3.2
libjpeg62-32bit-62.2.0-lp150.4.3.2
libjpeg62-devel-62.2.0-lp150.4.3.2
libjpeg62-devel-32bit-62.2.0-lp150.4.3.2
libjpeg62-turbo-1.5.3-lp150.4.3.2
libjpeg8-8.1.2-lp150.4.3.2
libjpeg8-32bit-8.1.2-lp150.4.3.2
libjpeg8-devel-8.1.2-lp150.4.3.2
libjpeg8-devel-32bit-8.1.2-lp150.4.3.2
libturbojpeg0-8.1.2-lp150.4.3.2
libturbojpeg0-32bit-8.1.2-lp150.4.3.2

Ссылки

Описание

libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.

Затронутые продукты
openSUSE Leap 15.0:libjpeg-turbo-1.5.3-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-32bit-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-devel-32bit-62.2.0-lp150.4.3.2
Ссылки

Описание

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

Затронутые продукты
openSUSE Leap 15.0:libjpeg-turbo-1.5.3-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-32bit-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-devel-32bit-62.2.0-lp150.4.3.2
Ссылки

Описание

get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries.

Затронутые продукты
openSUSE Leap 15.0:libjpeg-turbo-1.5.3-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-32bit-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-62.2.0-lp150.4.3.2
openSUSE Leap 15.0:libjpeg62-devel-32bit-62.2.0-lp150.4.3.2
Ссылки