Опубликовано: 29 нояб. 2018
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5
Описание
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1.5.2-0ubuntu5.18.04.1 |
| cosmic | ignored | end of life |
| devel | released | 2.0.2-0ubuntu1 |
| disco | released | 2.0.1-0ubuntu2.2 |
| eoan | released | 2.0.2-0ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 1.3.0-0ubuntu2.1 |
| esm-infra/bionic | not-affected | 1.5.2-0ubuntu5.18.04.1 |
| esm-infra/xenial | not-affected | 1.4.2-0ubuntu3.1 |
| precise/esm | not-affected | |
| trusty | not-affected | 1.3.0-0ubuntu2.1 |
Показывать по
10
EPSS
Процентиль: 44%
0.00219
Низкий
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
redhat
около 7 лет назад
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
CVSS3: 6.5
nvd
около 7 лет назад
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
CVSS3: 6.5
debian
около 7 лет назад
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel ...
CVSS3: 6.5
github
больше 3 лет назад
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
EPSS
Процентиль: 44%
0.00219
Низкий
4.3 Medium
CVSS2
6.5 Medium
CVSS3