CVE-2013-6629 — Sensitive Information Exposure in GPL Ghostscript

CWE-200 — Sensitive Information Exposure CWE-456 — Missing Initialization of a Variable17 documents9 sources

Severity

5.0MEDIUMNVD

EPSS

0.2%

top 56.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libjpeg-turbo Artifex GPL Ghostscript Google Chrome +8 more

Timeline

PublishedNov 19

Latest updateMay 14

Description

The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages9 packages

▶NVDlibjpeg-turbo/libjpeg-turbo< 1.3.1

▶Debianlibjpeg-turbo/libjpeg-turbo< 1.3.0-3+3

▶NVDgoogle/chrome< 31.0.1650.48

▶NVDartifex/gpl_ghostscript< 9.03

▶NVDmozilla/firefox< 24.2+1

Also affects: Debian Linux 7.0, 8.0, Fedora 18, 19, 20, Ubuntu Linux 10.04, 12.04, 12.10, 13.04, 13.10

Patches

Patch: bugzilla.mozilla.org ↗Patch: portal.msrc.microsoft.com ↗Patch: src.chromium.org ↗

🔴Vulnerability Details

GHSA

GHSA-7vr8-hqr3-rjrw: The get_sos function in jdmarker↗2022-05-14

▶

OSV

CVE-2013-6629: The get_sos function in jdmarker↗2013-11-19

▶

CVEList

CVE-2013-6629: The get_sos function in jdmarker↗2013-11-15

▶

📋Vendor Advisories

Microsoft

libjpeg Information Disclosure Vulnerability↗2017-04-11

▶

Red Hat

OpenJDK: libjpeg: uninitialized memory read information leak (AWT, 8029760)↗2014-04-15

▶

Ubuntu

libjpeg, libjpeg-turbo vulnerabilities↗2013-12-19

▶

Ubuntu

Thunderbird vulnerabilities↗2013-12-11

▶

Ubuntu

Firefox vulnerabilities↗2013-12-11

▶

💬Community

Bugzilla

CVE-2014-0462 OpenJDK: libjpeg: uninitialized memory read information leak (AWT, 8029760)↗2014-06-09

▶

Bugzilla

CVE-2013-6630 libjpeg: information leak (read of uninitialized memory)↗2013-11-18

▶

Bugzilla

CVE-2013-6630 CVE-2013-6629 mingw32-libjpeg: various flaws [epel-5]↗2013-11-18

▶

Bugzilla

CVE-2013-6629 CVE-2013-6630 libjpeg-turbo: various flaws [fedora-all]↗2013-11-18

▶

Bugzilla

CVE-2013-6629 libjpeg: information leak (read of uninitialized memory)↗2013-11-18

▶