libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker.
References
Link | Resource |
---|---|
https://tapani.tarvainen.info/linux/convertbug/ | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1169845 | Issue Tracking Patch Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/71326 | Third Party Advisory VDB Entry |
http://www.openwall.com/lists/oss-security/2014/11/26/8 | Mailing List |
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/150967.html | Third Party Advisory |
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/150957.html | Third Party Advisory |
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147336.html | Third Party Advisory |
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147315.html | Third Party Advisory |
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26482&sid=81658bc2f51a8d9893279cd01e83783f | Third Party Advisory |
https://usn.ubuntu.com/3706-1/ | |
https://usn.ubuntu.com/3706-2/ |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2017-10-10 06:29
Updated : 2018-07-11 18:29
NVD link : CVE-2014-9092
Mitre link : CVE-2014-9092
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
canonical
- ubuntu_linux
libjpeg-turbo
- libjpeg-turbo
fedoraproject
- fedora