Unrated severityNVD Advisory· Published Jun 13, 2006· Updated Apr 16, 2026

CVE-2006-3005

Description

The JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is built without the -maxmem feature, which could allow context-dependent attackers to cause a denial of service (memory exhaustion) via a crafted JPEG file that exceeds the intended memory limits.

Affected products

Gentoo/Media Libs Jpeg5 versions
cpe:2.3:a:gentoo:media-libs_jpeg:6b:r2:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:gentoo:media-libs_jpeg:6b:r2:*:*:*:*:*:*
- cpe:2.3:a:gentoo:media-libs_jpeg:6b:r3:*:*:*:*:*:*
- cpe:2.3:a:gentoo:media-libs_jpeg:6b:r4:*:*:*:*:*:*
- cpe:2.3:a:gentoo:media-libs_jpeg:6b:r5:*:*:*:*:*:*
- cpe:2.3:a:gentoo:media-libs_jpeg:6b:r6:*:*:*:*:*:*
Gentoo/Linux
cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/20563nvdPatchVendor Advisory
www.gentoo.org/security/en/glsa/glsa-200606-11.xmlnvdPatchVendor Advisory
bugs.gentoo.org/show_bug.cginvd
www.osvdb.org/26317nvd
exchange.xforce.ibmcloud.com/vulnerabilities/31451nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000