Every CVE whose affected-product data names Jpeg Libjpeg, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2022-37768 — CVSS 7.5 (high): libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame::ParseTrailer.
CVE-2021-39515 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function SampleInterleavedLSScan::ParseMCU()…
CVE-2021-39516 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get() located in…
CVE-2021-39517 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsam…
CVE-2021-39518 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. LineBuffer::FetchRegion() in linebuffer.cpp has a heap-based buffer overflow.
CVE-2021-39519 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PullQData()…
CVE-2021-39520 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::PushReconstructe…
CVE-2022-31796 — CVSS 6.5 (medium): libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the…
CVE-2022-32978 — CVSS 6.5 (medium): There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in libjpeg before 1.64 via an empty JPEG-LS…
CVE-2023-37837 — CVSS 6.5 (medium): libjpeg commit db33a6e was discovered to contain a heap buffer overflow via LineBitmapRequester::EncodeRegion at linebitmaprequester.cpp…
CVE-2021-39514 — CVSS 6.5 (medium): An issue was discovered in libjpeg through 2020021. An uncaught floating point exception in the function ACLosslessScan::ParseMCU() located…
CVE-2022-37769 — CVSS 6.5 (medium): libjpeg commit 281daa9 was discovered to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp. This vulnerability…
CVE-2022-37770 — CVSS 6.5 (medium): libjpeg commit 281daa9 was discovered to contain a segmentation fault via LineMerger::GetNextLowpassLine at linemerger.cpp. This…
CVE-2023-37836 — CVSS 6.5 (medium): libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook at bitmaphook.cpp. This vulnerability…
CVE-2022-35166 — CVSS 5.5 (medium): libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG::ReadInternal.