pkg:Debian/libjpeg-turbo
共 21 筆 CVEHIGH8MEDIUM11
✅ 檢查你的版本
所有已知漏洞
- HIGH8.8CVE-2020-17541Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component.from 0, < 1:2.0.5-1
- from 0, < 1:1.4.2-1
- from 0, < 1:1.3.1-12+deb8u1
- HIGH8.1CVE-2020-13790libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file.from 0, < 1:2.0.5-1
- from 0, < 1:1.5.1-2+deb9u2
- from 0, < 1:2.0.5-1
- from 0, < 1:2.0.5-1
- HIGH7.1CVE-2020-14152In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly cau…from 0, < 1:1.5.2-1
- from 0, < 1:1.3.1-12+deb8u2
- from 0, < 1:2.0.5-1
- from 0, < 1:2.0.5-1
- from 0, < 1:1.5.1-2+deb9u1
- from 0, < 1:1.4.2-1
- from 0, < 1:1.4.2-1
- from 0, < 1:1.4.2-1
- MEDIUM6.5CVE-2017-15232libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file.from 0, < 1:2.0.5-1
- MEDIUM6.5CVE-2014-9092libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker.from 0, < 1:1.3.1-11
- MEDIUM5.5CVE-2020-35538A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.from 0, < 1:2.0.6-1
- MEDIUM5.5CVE-2021-46822The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer a…from 0
- —CVE-2013-6630The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does no…from 0, < 1.3.0-3
- from 0, < 1.3.0-3