Debian Libjpeg6B vulnerabilities

5 known vulnerabilities affecting debian/libjpeg6b.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1LOW4

Vulnerabilities

Page 1 of 1
CVE-2017-15232LOWCVSS 6.5fixed in libjpeg-turbo 1:2.0.5-1 (bookworm)2017
CVE-2017-15232 [MEDIUM] CVE-2017-15232: libjpeg-turbo - libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c v... libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file. Scope: local bookworm: resolved (fixed in 1:2.0.5-1) bullseye: resolved (fixed in 1:2.0.5-1) forky: resolved (fixed in 1:2.0.5-1) sid: resolved (fixed in 1:2.0.5-1) trixie: resolved (fixed in 1:2.0.5-1)
debian
CVE-2016-3616HIGHCVSS 8.8fixed in libjpeg-turbo 1:1.4.2-1 (bookworm)2016
CVE-2016-3616 [HIGH] CVE-2016-3616: libjpeg-turbo - The cjpeg utility in libjpeg allows remote attackers to cause a denial of servic... The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file. Scope: local bookworm: resolved (fixed in 1:1.4.2-1) bullseye: resolved (fixed in 1:1.4.2-1) forky: resolved (fixed in 1:1.4.2-1) sid: resolved (fixed in 1:1.4.2-1) trixie: resolved (fixe
debian
CVE-2013-6629LOWCVSS 5.0fixed in libjpeg-turbo 1.3.0-3 (bookworm)2013
CVE-2013-6629 [MEDIUM] CVE-2013-6629: libjpeg-turbo - The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo throu... The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive informat
debian
CVE-2013-6630LOWCVSS 5.0fixed in libjpeg-turbo 1.3.0-3 (bookworm)2013
CVE-2013-6630 [MEDIUM] CVE-2013-6630: libjpeg-turbo - The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Go... The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table (DHT) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory
debian
CVE-2006-3005LOWCVSS 5.02006
CVE-2006-3005 [MEDIUM] CVE-2006-3005: libjpeg6b - The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is built withou... The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is built without the -maxmem feature, which could allow context-dependent attackers to cause a denial of service (memory exhaustion) via a crafted JPEG file that exceeds the intended memory limits. Scope: local sid: resolved
debian
Debian Libjpeg6B vulnerabilities | cvebase