Vulnerabilities > Rockcarry

DATE CVE VULNERABILITY TITLE RISK
2023-08-11 CVE-2020-24222 Classic Buffer Overflow vulnerability in Rockcarry Ffjpeg
Buffer Overflow vulnerability in jfif_decode() function in rockcarry ffjpeg through version 1.0.0, allows local attackers to execute arbitrary code due to an issue with ALIGN.
local
low complexity
rockcarry CWE-120
7.8
2022-05-05 CVE-2022-28471 Integer Overflow or Wraparound vulnerability in Rockcarry Ffjpeg 20211206
In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c.
network
low complexity
rockcarry CWE-190
6.5
2022-03-10 CVE-2021-34122 NULL Pointer Dereference vulnerability in Rockcarry Ffjpeg
The function bitstr_tell at bitstr.c in ffjpeg commit 4ab404e has a NULL pointer dereference.
local
low complexity
rockcarry CWE-476
5.5
2022-02-11 CVE-2021-45385 NULL Pointer Dereference vulnerability in Rockcarry Ffjpeg 20211206
A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load().
network
low complexity
rockcarry CWE-476
6.5
2022-02-08 CVE-2021-44956 Out-of-bounds Write vulnerability in Rockcarry Ffjpeg
Two Heap based buffer overflow vulnerabilities exist in ffjpeg through 01.01.2021.
network
low complexity
rockcarry CWE-787
6.5
2022-02-08 CVE-2021-44957 Classic Buffer Overflow vulnerability in Rockcarry Ffjpeg
Global buffer overflow vulnerability exist in ffjpeg through 01.01.2021.
network
low complexity
rockcarry CWE-120
6.5
2021-07-15 CVE-2020-23705 Classic Buffer Overflow vulnerability in Rockcarry Ffjpeg
A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file.
network
low complexity
rockcarry CWE-120
6.5
2021-05-18 CVE-2020-23851 Out-of-bounds Write vulnerability in Rockcarry Ffjpeg
A stack-based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c:513:28, which could cause a denial of service by submitting a malicious jpeg image.
local
low complexity
rockcarry CWE-787
5.5
2021-05-18 CVE-2020-23852 Out-of-bounds Write vulnerability in Rockcarry Ffjpeg
A heap based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c (line 544 & line 545), which could cause a denial of service by submitting a malicious jpeg image.
local
low complexity
rockcarry CWE-787
5.5
2020-07-01 CVE-2020-15470 Out-of-bounds Write vulnerability in Rockcarry Ffjpeg
ffjpeg through 2020-02-24 has a heap-based buffer overflow in jfif_decode in jfif.c.
local
low complexity
rockcarry CWE-787
5.5