Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

11 – 20 of 44 results


CVE-2022-32201

Medium priority
Vulnerable

In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Needs evaluation Vulnerable Vulnerable
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Not affected
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2022-31796

Low priority
Vulnerable

libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Vulnerable Vulnerable Vulnerable
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Not affected
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2022-31620

Low priority
Needs evaluation

In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may cause denial of service. This is related to out-of-bounds array access during arithmetically coded lossless scan or arithmetically...

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Needs evaluation Needs evaluation Needs evaluation
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Not affected
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39520

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructedData() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39519

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData() located in blockbitmaprequester.cpp It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39518

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39517

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled() located in blockbitmaprequester.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39516

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39515

Medium priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU() located in sampleinterleavedlsscan.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-39514

Low priority
Needs evaluation

An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located in aclosslessscan.cpp. It allows an attacker to cause Denial of Service.

4 affected packages

libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libjpeg Not affected Not affected Needs evaluation Not in release Ignored
libjpeg-turbo Not affected Not affected Not affected Not affected Not affected
libjpeg6b Not affected Not affected Not affected Not affected Needs evaluation
libjpeg9 Not affected Not affected Not affected Not affected Not affected
Show less packages