Vulnerabilities > CVE-2022-35166 - Infinite Loop vulnerability in Jpeg Libjpeg 20220615

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
jpeg
CWE-835
NVD
Published: 2022-08-18
Updated: 2022-08-22

Summary

libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG::ReadInternal.

Vulnerable Configurations

Part Description Count
Application
Jpeg
1

Common Weakness Enumeration (CWE)

References