CVE-2018-14498 — Out-of-bounds Read in Libjpeg-turbo
Severity
6.5MEDIUMNVD
OSV7.5
EPSS
0.3%
top 46.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 7
Latest updateJun 30
Description
get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6
Affected Packages6 packages
Also affects: Debian Linux 8.0, Fedora 28
Patches
🔴Vulnerability Details
4📋Vendor Advisories
4📄Research Papers
2💬Community
4Bugzilla▶
CVE-2018-14498 mingw-libjpeg-turbo: libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service [epel-7]↗2019-03-11
Bugzilla▶
CVE-2018-14498 libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service↗2019-03-11
Bugzilla▶
CVE-2018-14498 libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service [fedora-28]↗2019-03-11
Bugzilla▶
CVE-2018-14498 mingw-libjpeg-turbo: libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service [fedora-28]↗2019-03-11