CVE-2020-6624

CVE-2020-6624

EPSS 1.4%

jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.gentoo.org/711220#c3 https://bugs.gentoo.org/876247#c0 https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/1858744 https://security.gentoo.org/glsa/202007-17