Unrated severityOSV Advisory· Published Dec 21, 2018· Updated Aug 5, 2024
CVE-2018-20330
CVE-2018-20330
Description
The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
30.0.90, 0.0.91, 0.0.93, …+ 1 more
- (no CPE)range: 0.0.90, 0.0.91, 0.0.93, …
- (no CPE)range: = 2.0.1
Patches
Vulnerability mechanics
References
2- usn.ubuntu.com/4190-1/mitrevendor-advisoryx_refsource_UBUNTU
- github.com/libjpeg-turbo/libjpeg-turbo/issues/304mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.