Unrated severityOSV Advisory· Published Apr 21, 2018· Updated Aug 20, 2024

CVE-2018-10126

Description

ijg-libjpeg before 9d, as used in tiff2pdf (from LibTIFF) and other products, does not check for a NULL pointer at a certain place in jpeg_fdct_16x16 in jfdctint.c.

Affected products

Vadz/LibtiffOSV
Range: Pre360, Release-, Release-3-7-0, …

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3Emitremailing-list
bugzilla.maptools.org/show_bug.cgimitre
gitlab.com/libtiff/libtiff/-/issues/128mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000