The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libjpeg-turbo | Libjpeg-turbo | 7.4 (including) | 7.4 (including) |
| Red Hat Enterprise Linux 7 | RedHat | libjpeg-turbo-0:1.2.90-8.el7 | * |
| Libjpeg-turbo | Ubuntu | esm-infra-legacy/trusty | * |
| Libjpeg-turbo | Ubuntu | precise | * |
| Libjpeg-turbo | Ubuntu | trusty | * |
| Libjpeg-turbo | Ubuntu | trusty/esm | * |
| Libjpeg-turbo | Ubuntu | upstream | * |
| Libjpeg-turbo | Ubuntu | vivid/stable-phone-overlay | * |
| Libjpeg-turbo | Ubuntu | wily | * |
| Libjpeg9 | Ubuntu | artful | * |
| Libjpeg9 | Ubuntu | bionic | * |
| Libjpeg9 | Ubuntu | esm-apps/bionic | * |
| Libjpeg9 | Ubuntu | esm-apps/xenial | * |
| Libjpeg9 | Ubuntu | xenial | * |
| Libjpeg9 | Ubuntu | yakkety | * |
| Libjpeg9 | Ubuntu | zesty | * |
Potential Mitigations
References
- https://access.redhat.com/errata/RHSA-2019:2052
- https://bugzilla.redhat.com/show_bug.cgi?id=1318509
- https://bugzilla.redhat.com/show_bug.cgi?id=1319661
- https://lists.debian.org/debian-lts-announce/2019/01/msg00015.html
- https://usn.ubuntu.com/3706-1/
- https://usn.ubuntu.com/3706-2/
- https://access.redhat.com/errata/RHSA-2019:2052
- https://bugzilla.redhat.com/show_bug.cgi?id=1318509
- https://bugzilla.redhat.com/show_bug.cgi?id=1319661
- https://lists.debian.org/debian-lts-announce/2019/01/msg00015.html
- https://usn.ubuntu.com/3706-1/
- https://usn.ubuntu.com/3706-2/