Описание
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1.5.2-0ubuntu5.18.04.1 |
| cosmic | ignored | end of life |
| devel | released | 2.0.2-0ubuntu1 |
| disco | released | 2.0.1-0ubuntu2.2 |
| eoan | released | 2.0.2-0ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 1.3.0-0ubuntu2.1 |
| esm-infra/bionic | not-affected | 1.5.2-0ubuntu5.18.04.1 |
| esm-infra/xenial | not-affected | 1.4.2-0ubuntu3.1 |
| precise/esm | not-affected | |
| trusty | not-affected | 1.3.0-0ubuntu2.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflo ...
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3