Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

11 – 20 of 27 results


CVE-2022-31620

Low priority
Needs evaluation

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically...

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Needs evaluation Needs evaluation Needs evaluation
libjpeg6b Not affected Not affected Not affected Not affected Not affected
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39520

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39519

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData() located in blockbitmaprequester.cpp It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39518

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39517

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39516

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39515

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39514

Low priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-14153

Low priority

Some fixes available 1 of 8

In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Not affected Not affected Not affected Not affected Vulnerable
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-14152

Low priority

Some fixes available 5 of 19

In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Vulnerable Vulnerable Vulnerable Vulnerable Fixed
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected Fixed
Show less packages