| Max CVSS | 5.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-14152 | 5.8 |
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
|
27-02-2023 - 18:17 | 15-06-2020 - 17:15 | |
| CVE-2020-13790 | 5.8 |
libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file.
|
20-10-2020 - 13:15 | 03-06-2020 - 19:15 | |
| CVE-2018-14498 | 4.3 |
get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is o
|
31-07-2020 - 21:15 | 07-03-2019 - 23:29 | |
| CVE-2018-1152 | 4.3 |
libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
|
31-07-2020 - 21:15 | 18-06-2018 - 14:29 |