U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): libjpeg
  • Search Type: Search Last 3 Months
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

An Out-of-Bounds Read vulnerability exists when reading a U3D file using Open Design Alliance PRC SDK before 2022.11. The specific issue exists within the parsing of U3D files. Incorrect use of the LibJpeg source manager inside the U3D library, and crafted data in a U3D file, can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process.

Published: November 22, 2021; 4:15:07 AM -0500
V3.1: 8.8 HIGH
V2.0: 6.8 MEDIUM

Out of bounds read in libjpeg-turbo in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Published: October 08, 2021; 6:15:08 PM -0400
V3.1: 8.8 HIGH
V2.0: 6.8 MEDIUM