CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2018-14944
https://notcve.org/view.php?id=CVE-2018-14944
An issue has been found in jpeg_encoder through 2015-11-27. It is a SEGV in the function readFromBMP in jpeg_encoder.cpp. The signal is caused by an out-of-bounds write. Se ha encontrado un problema en jpeg_encoder hasta el 27/11/2015. Es un SEGV en la función readFromBMP en jpeg_encoder.cpp. • https://github.com/fouzhe/security/tree/master/jpeg_encoder#segv-in-function-readfrombmp https://github.com/thejinchao/jpeg_encoder/issues/4 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-13037
https://notcve.org/view.php?id=CVE-2018-13037
An issue was discovered in jpeg-compressor 0.1. The bmp_load function in stb_image.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact. Se ha descubierto un problema en jpeg-compressor 0.1. La función bmp_load en stb_image.c permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer y caída de aplicación basada en memoria dinámica o heap) o, probablemente, provocar cualquier otro tipo de problema. • https://github.com/fouzhe/security/tree/master/jpeg-compressor https://github.com/kornelski/jpeg-compressor/issues/13 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-13030
https://notcve.org/view.php?id=CVE-2018-13030
An issue was discovered in jpeg-compressor 0.1. The build_huffman function in stb_image.c allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact. Se ha descubierto un problema en jpeg-compressor 0.1. La función build_huffman en stb_image.c permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer y caída de aplicación basada en pila) o, probablemente, provocar cualquier otro tipo de problema. • https://github.com/fouzhe/security/tree/master/jpeg-compressor https://github.com/kornelski/jpeg-compressor/issues/12 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 5%CPEs: 1EXPL: 2CVE-2007-2721 – jasper: crash in jpc_qcx_getcompparms
https://notcve.org/view.php?id=CVE-2007-2721
The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert. La función jpc_qcx_getcompparms en jpc/jpc_cs.c para la librería JasPer JPEG-2000 (libjasper) anterior a 1.900 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio (caída) y posiblemente corromper el montículo mediante archivos de imagen mal formados, como se ha demostrado originalmente utilizando la conversión con imagemagick . • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=413033 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=413041 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=413041%3Bmsg=88 http://osvdb.org/36137 http://secunia.com/advisories/25287 http://secunia.com/advisories/25703 http://secunia.com/advisories/26516 http://secunia.com/advisories/27319 http://secunia.com/advisories/27489 http://secunia.com/advisories/39505 http://www.debian.org/security/2010/dsa-2036 http:&# •