libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00015.html | |
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00015.html | |
http://www.securityfocus.com/bid/104543 | Third Party Advisory VDB Entry |
https://github.com/libjpeg-turbo/libjpeg-turbo/commit/43e84cff1bb2bd8293066f6ac4eb0df61ddddbc6 | Patch Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2019/01/msg00015.html | Mailing List Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/07/msg00033.html | |
https://usn.ubuntu.com/3706-1/ | Third Party Advisory |
https://usn.ubuntu.com/3706-2/ | Third Party Advisory |
https://www.tenable.com/security/research/tra-2018-17 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: tenable
Published: 2018-06-12T00:00:00
Updated: 2020-07-31T20:06:09
Reserved: 2017-12-05T00:00:00
Link: CVE-2018-1152
JSON object: View
NVD Information
Status : Modified
Published: 2018-06-18T14:29:00.323
Modified: 2020-07-31T21:15:12.170
Link: CVE-2018-1152
JSON object: View
Redhat Information
No data.
CWE