CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37836
https://notcve.org/view.php?id=CVE-2023-37836
13 Jul 2023 — libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. • https://github.com/thorfdbg/libjpeg/issues/87#BUG1 • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37837
https://notcve.org/view.php?id=CVE-2023-37837
13 Jul 2023 — libjpeg commit db33a6e was discovered to contain a heap buffer overflow via LineBitmapRequester::EncodeRegion at linebitmaprequester.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. • https://github.com/thorfdbg/libjpeg/issues/87#BUG0 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-35166
https://notcve.org/view.php?id=CVE-2022-35166
18 Aug 2022 — libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG::ReadInternal. Se ha detectado que libjpeg commit 842c7ba contiene un bucle infinito por medio del componente JPEG::ReadInternal. • https://github.com/thorfdbg/libjpeg/issues/76 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-32978
https://notcve.org/view.php?id=CVE-2022-32978
10 Jun 2022 — There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS scan. Se presenta un fallo de aserción en la función SingleComponentLSScan::ParseMCU en el archivo singlecomponentlsscan.cpp en libjpeg versiones anteriores a 1.64 por medio de un escaneo JPEG-LS vacío • https://github.com/thorfdbg/libjpeg/commit/4746b577931e926a49e50de9720a4946de3069a7 • CWE-617: Reachable Assertion •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-32201
https://notcve.org/view.php?id=CVE-2022-32201
01 Jun 2022 — In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp. En libjpeg versión 1.63, se presenta una desreferencia de puntero NULL en la función Component::SubXOf en el archivo component.hpp • https://github.com/thorfdbg/libjpeg/commit/ea6315164b1649ff932a396b7600eac4bffcfaba • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-32202
https://notcve.org/view.php?id=CVE-2022-32202
01 Jun 2022 — In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp. En libjpeg versión 1.63, se presenta una desreferencia de puntero NULL en la función LineBuffer::FetchRegion en el archivo linebuffer.cpp • https://github.com/thorfdbg/libjpeg/commit/51c3241b6da39df30f016b63f43f31c4011222c7 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-31796
https://notcve.org/view.php?id=CVE-2022-31796
29 May 2022 — libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use. libjpeg versión 1.63, presenta una lectura excesiva del búfer en la región heap de la memoria en la función HierarchicalBitmapRequester::FetchRegion en el archivo hierarchicalbitmaprequester.cpp porque el tamaño de la MCU puede ser diferente entre la asignación y el uso • https://github.com/thorfdbg/libjpeg/commit/187035b9726710b4fe11d565c7808975c930895d • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-31620
https://notcve.org/view.php?id=CVE-2022-31620
25 May 2022 — In libjpeg before 1.64, BitStream
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-39515
https://notcve.org/view.php?id=CVE-2021-39515
20 Sep 2021 — An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service. Se ha detectado un problema en libjpeg versiones hasta 2020021. Se presenta una desreferencia de puntero NULL en la función SampleInterleavedLSScan::ParseMCU() ubicada en el archivo sampleinterleavedlsscan.cpp. • https://github.com/thorfdbg/libjpeg/issues/37 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-39517
https://notcve.org/view.php?id=CVE-2021-39517
20 Sep 2021 — An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service. Se ha detectado un problema en libjpeg versiones hasta 2020021. Se presenta una desreferencia de puntero NULL en la función BlockBitmapRequester::ReconstructUnsampled() ubicada en el archivo blockbitmaprequester.cpp. • https://github.com/thorfdbg/libjpeg/issues/33 • CWE-476: NULL Pointer Dereference •