VYPR
Unrated severityOSV Advisory· Published Mar 7, 2019· Updated Aug 5, 2024

CVE-2018-14498

CVE-2018-14498

Description

get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

26

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.