CVE-2020-14152

CVE-2020-14152

EPSS 1.5%

In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.gentoo.org/727908 https://lists.debian.org/debian-lts-announce/2020/07/msg00033.html http://www.ijg.org/files/jpegsrc.v9d.tar.gz