Vulnerabilities > Libjpeg Turbo
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2021-29390 | Out-of-bounds Write vulnerability in multiple products libjpeg-turbo version 2.0.90 has a heap-based buffer over-read (2 bytes) in decompress_smooth_data in jdcoefct.c. | 7.1 |
| 2023-05-25 | CVE-2023-2804 | Out-of-bounds Write vulnerability in Libjpeg-Turbo 2.1.90 A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2_merged_upsample_internal() function of jdmrgext.c file. | 6.5 |
| 2022-08-31 | CVE-2020-35538 | NULL Pointer Dereference vulnerability in Libjpeg-Turbo 2.0.5 A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo. | 5.5 |
| 2022-06-18 | CVE-2021-46822 | Out-of-bounds Write vulnerability in Libjpeg-Turbo The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. | 5.5 |
| 2021-06-01 | CVE-2020-17541 | Out-of-bounds Write vulnerability in Libjpeg-Turbo Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. | 8.8 |
| 2021-03-10 | CVE-2021-20205 | Divide By Zero vulnerability in multiple products Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image. | 6.5 |
| 2020-06-03 | CVE-2020-13790 | Out-of-bounds Read vulnerability in multiple products libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file. | 8.1 |
| 2019-07-18 | CVE-2019-13960 | Allocation of Resources Without Limits or Throttling vulnerability in Libjpeg-Turbo 2.0.2 In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG image containing incorrect width and height values in the image header. | 5.5 |
| 2019-03-07 | CVE-2018-14498 | Out-of-bounds Read vulnerability in multiple products get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries. | 6.5 |
| 2018-12-21 | CVE-2018-20330 | Integer Overflow or Wraparound vulnerability in Libjpeg-Turbo 2.0.1 The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench. | 8.8 |