CVE-2020-35538 — NULL Pointer Dereference in Libjpeg-turbo

CWE-476 — NULL Pointer Dereference8 documents7 sources

Severity

5.5MEDIUMNVD

OSV7.5

EPSS

0.0%

top 92.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libjpeg-turbo Debian Libjpeg-turbo Msrc Azure Eflow +22 more

Timeline

PublishedAug 31

Latest updateSep 22

Description

A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages28 packages

▶debiandebian/libjpeg-turbo< libjpeg-turbo 1:2.0.6-1 (bookworm)

▶Debianlibjpeg-turbo/libjpeg-turbo< 1:2.0.6-1+3

▶Ubuntulibjpeg-turbo/libjpeg-turbo< 1.5.2-0ubuntu5.18.04.6+1

▶CVEListV5libjpeg-turbo/libjpeg-turbolibjpeg-turbo 2.0.5 onwards

▶NVDlibjpeg-turbo/libjpeg-turbo2.0.5

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

libjpeg-turbo vulnerabilities↗2022-09-22

▶

GHSA

GHSA-grwc-h387-x9h2: A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo↗2022-09-01

▶

OSV

CVE-2020-35538: A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo↗2022-08-31

▶

📋Vendor Advisories

Ubuntu

libjpeg-turbo vulnerabilities↗2022-09-22

▶

Microsoft

A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.↗2022-08-09

▶

Red Hat

libjpeg-turbo: Null pointer dereference in jcopy_sample_rows() function↗2020-07-06

▶

Debian

CVE-2020-35538: libjpeg-turbo - A crafted input file could cause a null pointer dereference in jcopy_sample_rows...↗2020

▶