CVE-2022-31796

CVE-2022-31796

EPSS 0.9%

libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in hierarchicalbitmaprequester.cpp because the MCU size can be different between allocation and use.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/thorfdbg/libjpeg/commit/187035b9726710b4fe11d565c7808975c930895d https://github.com/thorfdbg/libjpeg/issues/71