Vulnerabilities > Jpeg > Libjpeg > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-07-13 CVE-2023-37836 Reachable Assertion vulnerability in Jpeg Libjpeg 1.63
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp.
network
low complexity
jpeg CWE-617
6.5
2023-07-13 CVE-2023-37837 Out-of-bounds Write vulnerability in Jpeg Libjpeg 1.63
libjpeg commit db33a6e was discovered to contain a heap buffer overflow via LineBitmapRequester::EncodeRegion at linebitmaprequester.cpp.
network
low complexity
jpeg CWE-787
6.5
2022-08-18 CVE-2022-37769 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jpeg Libjpeg
libjpeg commit 281daa9 was discovered to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp.
network
low complexity
jpeg CWE-119
6.5
2022-08-18 CVE-2022-37770 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jpeg Libjpeg
libjpeg commit 281daa9 was discovered to contain a segmentation fault via LineMerger::GetNextLowpassLine at linemerger.cpp.
network
low complexity
jpeg CWE-119
6.5
2022-08-18 CVE-2022-35166 Infinite Loop vulnerability in Jpeg Libjpeg 20220615
libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG::ReadInternal.
local
low complexity
jpeg CWE-835
5.5
2022-06-10 CVE-2022-32978 Reachable Assertion vulnerability in Jpeg Libjpeg 1.63
There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS scan.
network
low complexity
jpeg CWE-617
6.5
2022-06-02 CVE-2022-31796 Out-of-bounds Read vulnerability in Jpeg Libjpeg 1.63
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.
network
low complexity
jpeg CWE-125
6.5
2021-09-20 CVE-2021-39514 Incorrect Comparison vulnerability in Jpeg Libjpeg 1.63/1.66/20220615
An issue was discovered in libjpeg through 2020021.
network
low complexity
jpeg CWE-697
6.5
2021-09-20 CVE-2021-39515 NULL Pointer Dereference vulnerability in Jpeg Libjpeg 1.63/1.66/20220615
An issue was discovered in libjpeg through 2020021.
network
low complexity
jpeg CWE-476
6.5
2021-09-20 CVE-2021-39516 NULL Pointer Dereference vulnerability in Jpeg Libjpeg 1.63/1.66/20220615
An issue was discovered in libjpeg through 2020021.
network
low complexity
jpeg CWE-476
6.5