| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-2201 | 9.3 |
In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. U
|
02-06-2022 - 14:15 | 13-11-2019 - 18:15 | |
| CVE-2018-20330 | 6.8 |
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
|
24-08-2020 - 17:37 | 21-12-2018 - 09:29 | |
| CVE-2018-14498 | 4.3 |
get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is o
|
31-07-2020 - 21:15 | 07-03-2019 - 23:29 | |
| CVE-2018-19664 | 4.3 |
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
|
13-11-2019 - 19:15 | 29-11-2018 - 08:29 |