Vulnerabilities > Rockcarry > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-05 | CVE-2022-28471 | Integer Overflow or Wraparound vulnerability in Rockcarry Ffjpeg 20211206 In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. | 6.5 |
| 2022-03-10 | CVE-2021-34122 | NULL Pointer Dereference vulnerability in Rockcarry Ffjpeg The function bitstr_tell at bitstr.c in ffjpeg commit 4ab404e has a NULL pointer dereference. | 5.5 |
| 2022-02-11 | CVE-2021-45385 | NULL Pointer Dereference vulnerability in Rockcarry Ffjpeg 20211206 A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load(). | 6.5 |
| 2022-02-08 | CVE-2021-44956 | Out-of-bounds Write vulnerability in Rockcarry Ffjpeg Two Heap based buffer overflow vulnerabilities exist in ffjpeg through 01.01.2021. | 6.5 |
| 2022-02-08 | CVE-2021-44957 | Classic Buffer Overflow vulnerability in Rockcarry Ffjpeg Global buffer overflow vulnerability exist in ffjpeg through 01.01.2021. | 6.5 |
| 2021-07-15 | CVE-2020-23705 | Classic Buffer Overflow vulnerability in Rockcarry Ffjpeg A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file. | 6.5 |
| 2021-05-18 | CVE-2020-23851 | Out-of-bounds Write vulnerability in Rockcarry Ffjpeg A stack-based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c:513:28, which could cause a denial of service by submitting a malicious jpeg image. | 5.5 |
| 2021-05-18 | CVE-2020-23852 | Out-of-bounds Write vulnerability in Rockcarry Ffjpeg A heap based buffer overflow vulnerability exists in ffjpeg through 2020-07-02 in the jfif_decode(void *ctxt, BMP *pb) function at ffjpeg/src/jfif.c (line 544 & line 545), which could cause a denial of service by submitting a malicious jpeg image. | 5.5 |
| 2020-07-01 | CVE-2020-15470 | Out-of-bounds Write vulnerability in Rockcarry Ffjpeg ffjpeg through 2020-02-24 has a heap-based buffer overflow in jfif_decode in jfif.c. | 5.5 |
| 2020-05-24 | CVE-2020-13440 | Out-of-bounds Write vulnerability in Rockcarry Ffjpeg ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c. | 6.5 |