Known Vulnerabilities for Libjpeg-turbo by Libjpeg-turbo
Listed below are 10 of the newest known vulnerabilities associated with "Libjpeg-turbo" by "Libjpeg-turbo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-2804 json | A heap-based buffer overflow issue was discovered in libjpeg-turbo in h2v2_merged_upsample_internal() function of jdmrgext.c ... | 6.5 - MEDIUM | 2023-05-25 | 2023-08-17 |
| CVE-2021-46822 json | The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a gray... | 5.5 - MEDIUM | 2022-06-18 | 2022-08-15 |
| CVE-2021-29390 json | libjpeg-turbo version 2.0.90 has a heap-based buffer over-read (2 bytes) in decompress_smooth_data in jdcoefct.c. | 7.1 - HIGH | 2023-08-22 | 2023-11-07 |
| CVE-2021-20205 json | Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when p... | 6.5 - MEDIUM | 2021-03-10 | 2023-11-07 |
| CVE-2020-35538 json | A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo. | 5.5 - MEDIUM | 2022-08-31 | 2022-09-20 |
| CVE-2020-17541 json | Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malfo... | 8.8 - HIGH | 2021-06-01 | 2022-11-07 |
| CVE-2020-13790 json | libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM inp... | 8.1 - HIGH | 2020-06-03 | 2023-11-07 |
| CVE-2019-13960 json | ** DISPUTED ** In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG ... | 5.5 - MEDIUM | 2019-07-18 | 2023-11-07 |
| CVE-2018-20330 json | The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP... | 8.8 - HIGH | 2018-12-21 | 2020-08-24 |
| CVE-2018-19664 json | libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg. | 6.5 - MEDIUM | 2018-11-29 | 2019-11-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.4 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.2 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.1 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.0 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.90 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.3 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.2 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.1 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.0 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.90 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.2 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.1 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.0 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.90 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.1 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.0 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.90 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.1 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.0 | |||
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.1.90 |