CVE-2018-11212
published 2018-05-16CVE-2018-11212: An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero…
medium6.5CVSS 3.0
AVNACLPRNUIRSUCNINAH
An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | libjpeg-turbo | < libjpeg-turbo 1:1.4.2-1 (bookworm) | libjpeg-turbo 1:1.4.2-1 (bookworm) |
| debian | libjpeg9 | < libjpeg-turbo 1:1.4.2-1 (bookworm) | libjpeg-turbo 1:1.4.2-1 (bookworm) |
| ijg | libjpeg | — | — |
| libjpeg-turbo | libjpeg-turbo | >= 0 < 1:1.4.2-1 | 1:1.4.2-1 |
| libjpeg-turbo | libjpeg-turbo | >= 0 < 1:1.4.2-1 | 1:1.4.2-1 |
| libjpeg-turbo | libjpeg-turbo | >= 0 < 1:1.4.2-1 | 1:1.4.2-1 |
| libjpeg-turbo | libjpeg-turbo | >= 0 < 1:1.4.2-1 | 1:1.4.2-1 |
| netapp | oncommand_unified_manager | >= 7.3 | — |
| netapp | oncommand_unified_manager | >= 9.4 | — |
| opensuse | leap | — | — |
| oracle | jdk | — | — |
| oracle | jdk | — | — |
| oracle | jdk | — | — |
| oracle | jre | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv8.8HIGH