Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

21 – 27 of 27 results


CVE-2018-11813

Low priority

Some fixes available 6 of 23

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Vulnerable Vulnerable Vulnerable Vulnerable Fixed
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2018-11214

Low priority

Some fixes available 4 of 22

An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Vulnerable Vulnerable Vulnerable Vulnerable Fixed
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2018-11213

Low priority

Some fixes available 4 of 22

An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Vulnerable Vulnerable Vulnerable Vulnerable Fixed
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2018-11212

Low priority

Some fixes available 4 of 22

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Vulnerable Vulnerable Vulnerable Vulnerable Fixed
libjpeg9 Not affected Not affected Not affected Vulnerable Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2018-10126

Low priority
Needs evaluation

LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c.

4 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo, tiff

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libjpeg9 Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libjpeg-turbo Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tiff Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2016-3616

Low priority

Some fixes available 3 of 8

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

3 affected packages

libjpeg6b, libjpeg9, libjpeg-turbo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg6b Not affected Not affected Not affected Not affected
libjpeg9 Not affected Not affected Fixed Fixed
libjpeg-turbo Not affected Not affected Not affected Not affected
Show less packages

CVE-2016-6702

Medium priority
Ignored

A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary code in the context of an...

6 affected packages

android, chromium-browser, libjpeg6b, libjpeg9, libjpeg-turbo, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
android Not in release Ignored
chromium-browser Ignored Ignored
libjpeg6b Not affected Not affected
libjpeg9 Not affected Not affected
libjpeg-turbo Not affected Not affected
oxide-qt Not in release Ignored
Show less packages