CVE-2018-20330

The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.
Configurations

Configuration 1

cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.1:*:*:*:*:*:*:*

Information

Published : 2018-12-21 09:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-20330

Mitre link : CVE-2018-20330

Products Affected
No products.