Download
| Alert*
oval:org.secpod.oval:def:1801180
CVE-2017-15232: libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file. oval:org.secpod.oval:def:1801181 CVE-2017-15232: libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file. oval:org.secpod.oval:def:1801182 CVE-2018-1152: libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image. oval:org.secpod.oval:def:1801178 CVE-2017-15232: libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file. oval:org.secpod.oval:def:89003434 This update for libjpeg-turbo fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-14498: Fixed a heap-based buffer over read in get_8bit_row function which could allow to an attacker to cause denial of service . - CVE-2018-11813: Fixed the end-of-file mishan ... oval:org.secpod.oval:def:89002519 This update for jpeg fixes the following issues: * CVE-2017-15232: NULL pointer dereferences in jdpostct.c and jquant1.c could lead to denial of service when processing images [bsc#1062937] * CVE-2018-11813: Fixed the end-of-file mishandling in read_pixel in rdtarga.c, which allowed remote attacker ... oval:org.secpod.oval:def:84528 libjpeg-turbo: library for handling JPEG files Several security issues were fixed in libjpeg-turbo. oval:org.secpod.oval:def:86096 libjpeg-turbo: library for handling JPEG files Several security issues were fixed in libjpeg-turbo. oval:org.secpod.oval:def:114716 The libjpeg-turbo package contains a library of functions for manipulating JPEG images. oval:org.secpod.oval:def:1601046 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service or execute arbitrary code via a crafted file.libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.An out-of-bounds read vulnerability has been discovered in libjpeg-turbo when reading one row of ... oval:org.secpod.oval:def:205271 The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix: * libjpeg: null pointer de ... oval:org.secpod.oval:def:503276 The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix: * libjpeg: null pointer de ... oval:org.secpod.oval:def:1700259 The cjpeg utility in libjpeg allows remote attackers to cause a denial of service or execute arbitrary code via a crafted file.A divide by zero vulnerability has been discovered in libjpeg-turbo in alloc_sarray function of jmemmgr.c file. An attacker could use this vulnerability to cause a denial o ... oval:org.secpod.oval:def:1504154 [1.2.90-8] - Fix CVE-2018-14498 [1.2.90-7] - Fix CVE-2018-11212 - Fix CVE-2016-3616 , CVE-2018-11213 and CVE-2018-11214 - Fix CVE-2018-11813 |