libjpeg62-turbo (SUSE:Linux Enterprise Module for Basesystem 15 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP3 package libjpeg62-turbo, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2020-17541 — CVSS 8.8 (high): Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file…
CVE-2020-35538 — CVSS 5.5 (medium): A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.