Known Vulnerabilities for Libjpeg-turbo by Libjpeg-turbo
Listed below are 10 of the newest known vulnerabilities associated with "Libjpeg-turbo" by "Libjpeg-turbo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-29390 | libjpeg-turbo version 2.0.90 has a heap-based buffer over-read (2 bytes) in decompress_smooth_data in jdcoefct.c. | 7.1 - HIGH | 2023-08-22 | 2023-11-07 |
| CVE-2021-20205 | Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when p... | 6.5 - MEDIUM | 2021-03-10 | 2023-11-07 |
| CVE-2020-35538 | A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo. | 5.5 - MEDIUM | 2022-08-31 | 2022-09-20 |
| CVE-2020-17541 | Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malfo... | 8.8 - HIGH | 2021-06-01 | 2022-11-07 |
| CVE-2020-13790 | libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM inp... | 8.1 - HIGH | 2020-06-03 | 2023-11-07 |
| CVE-2019-13960 | ** DISPUTED ** In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of an invalid progressive JPEG ... | 5.5 - MEDIUM | 2019-07-18 | 2023-11-07 |
| CVE-2018-20330 | The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP... | 8.8 - HIGH | 2018-12-21 | 2020-08-24 |
| CVE-2018-19664 | libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg. | 6.5 - MEDIUM | 2018-11-29 | 2019-11-13 |
| CVE-2018-14498 | get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of servi... | 6.5 - MEDIUM | 2019-03-07 | 2023-11-07 |
| CVE-2018-1152 | libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted ... | 6.5 - MEDIUM | 2018-06-18 | 2020-07-31 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.4 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.2 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.1 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 2.0.0 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.90 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.3 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.2 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.1 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.5.0 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.90 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.2 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.1 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.4.0 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.90 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.1 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.3.0 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.90 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.1 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.2.0 | All | All | All |
| Application | Libjpeg-turbo | Libjpeg-turbo | 1.1.90 | All | All | All |