CVE-2023-37836
https://notcve.org/view.php?id=CVE-2023-37836
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. • https://github.com/thorfdbg/libjpeg/issues/87#BUG1 • CWE-617: Reachable Assertion •
CVE-2023-37837
https://notcve.org/view.php?id=CVE-2023-37837
libjpeg commit db33a6e was discovered to contain a heap buffer overflow via LineBitmapRequester::EncodeRegion at linebitmaprequester.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. • https://github.com/thorfdbg/libjpeg/issues/87#BUG0 • CWE-787: Out-of-bounds Write •
CVE-2022-37770
https://notcve.org/view.php?id=CVE-2022-37770
libjpeg commit 281daa9 was discovered to contain a segmentation fault via LineMerger::GetNextLowpassLine at linemerger.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. Se ha detectado que libjpeg commit 281daa9 contiene un fallo de segmentación por la función LineMerger::GetNextLowpassLine en el archivo linemerger.cpp. Esta vulnerabilidad permite a atacantes causar una Denegación de Servicio (DoS) por medio de un archivo diseñado. • https://github.com/thorfdbg/libjpeg/issues/79 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2022-37769
https://notcve.org/view.php?id=CVE-2022-37769
libjpeg commit 281daa9 was discovered to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. Se ha detectado que libjpeg commit 281daa9 contiene un fallo de segmentación por medio de la función HuffmanDecoder::Get en el archivo huffmandecoder.hpp. Esta vulnerabilidad permite a atacantes causar una Denegación de Servicio (DoS) por medio de un archivo diseñado. • https://github.com/thorfdbg/libjpeg/issues/78 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2022-37768
https://notcve.org/view.php?id=CVE-2022-37768
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame::ParseTrailer. Se ha detectado que libjpeg commit 281daa9 contiene un bucle infinito por medio del componente Frame::ParseTrailer. • https://github.com/thorfdbg/libjpeg/issues/77 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •