[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c (CVE-2020-13790)

ID: oval:org.secpod.oval:def:1801988Date: (C)2021-09-02   (M)2023-11-10
Class: PATCHFamily: unix




libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row in rdppm.c via a malformed PPM input file.

Platform:
Alpine Linux 3.14
Alpine Linux 3.13
Alpine Linux 3.12
Alpine Linux 3.11
Alpine Linux 3.10
Product:
libjpeg-turbo
Reference:
11676
CVE-2020-13790
CVE    1
CVE-2020-13790

© SecPod Technologies