Showing 1 - 4 of 4

CVE-2018-11813

Status Candidate

Overview

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

Ubuntu Security Notice USN-5631-1: Posted Sep 23, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5631-1 - It was discovered that libjpeg-turbo incorrectly handled certain EOF characters. An attacker could possibly use this issue to cause libjpeg-turbo to consume resource, leading to a denial of service. This issue only affected Ubuntu 18.04 LTS. It was discovered that libjpeg-turbo incorrectly handled certain malformed jpeg files. An attacker could possibly use this issue to cause libjpeg-turbo to crash, resulting in a denial of service.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2018-11813, CVE-2020-35538, CVE-2021-46822; SHA-256 | 1c5e9f66c33802aff0761c128dc62d1964aa449af0264e73bb69f61d3abed1d5; Download | Favorite | View

Ubuntu Security Notice USN-5553-1: Posted Aug 8, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5553-1 - It was discovered that libjpeg-turbo was not properly handling EOF characters, which could lead to excessive memory consumption through the execution of a large loop. An attacker could possibly use this issue to cause a denial of service. It was discovered that libjpeg-turbo was not properly performing bounds check operations, which could lead to a heap-based buffer overread. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2018-11813, CVE-2018-14498, CVE-2020-14152, CVE-2020-17541; SHA-256 | 4e135a6155a1d14aa6894601823a2eb064d3b15e7f83a90a56f73977ea7ed49c; Download | Favorite | View

Ubuntu Security Notice USN-5497-1: Posted Jun 30, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5497-1 - It was discovered that Libjpeg6b was not properly performing bounds checks when compressing PPM and Targa image files. An attacker could possibly use this issue to cause a denial of service. Chijin Zhou discovered that Libjpeg6b was incorrectly handling the EOF character in input data when generating JPEG files. An attacker could possibly use this issue to force the execution of a large loop, force excessive memory consumption, and cause a denial of service.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2018-11212, CVE-2018-11813, CVE-2020-14152; SHA-256 | b47ca684bbef0111c47f1ad4e5fd9948b894f84cf2a3bf283167bc4a0bfa0019; Download | Favorite | View

Red Hat Security Advisory 2019-2052-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2052-01 - The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Issues addressed include denial of service and null pointer vulnerabilities.; tags | advisory, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2016-3616, CVE-2018-11212, CVE-2018-11213, CVE-2018-11214, CVE-2018-11813, CVE-2018-14498; SHA-256 | bcd643572f13ca282a36ecb15f0741448b2676bd8c5e94756a29cb0c892dd7f0; Download | Favorite | View

Page 1 of 1 Back 1 Next