7.9 High
AI Score
Confidence
High
0.019 Low
EPSS
Percentile
88.6%
The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.
access.redhat.com/errata/RHSA-2019:2052
bugzilla.redhat.com/show_bug.cgi?id=1318509
bugzilla.redhat.com/show_bug.cgi?id=1319661
lists.debian.org/debian-lts-announce/2019/01/msg00015.html
usn.ubuntu.com/3706-1/
usn.ubuntu.com/3706-2/