Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-9092
HistoryOct 10, 2017 - 12:00 a.m.

CVE-2014-9092

2017-10-1000:00:00
ubuntu.com
ubuntu.com
14

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.011 Low

EPSS

Percentile

84.8%

JSON

libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of
service (crash) via a crafted JPEG file, related to the Exif marker.

Bugs

Notes

Author Note
mdeslaur libjpeg-turbo in Ubuntu is not based on the Debian package.
OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchlibjpeg-turbo< 1.3.0-0ubuntu2.1UNKNOWN

Related

archlinux 1
nessus 17
openvas 14
rosalinux 1
cve 1
mageia 1
fedora 4
cvelist 1
amazon 1
prion 1
securityvulns 2
debiancve 1
nvd 1
ubuntu 2
cloudfoundry 1
archlinux
archlinux
libjpeg-turbo: denial of service
2014-11-28 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : libjpeg (MDVSA-2015:152)
2015-03-30 00:00:00
Fedora 20 : libjpeg-turbo-1.3.1-3.fc20 (2015-2580)
2015-03-09 00:00:00
EulerOS Virtualization for ARM 64 3.0.2.0 : libjpeg-turbo (EulerOS-SA-2020-1555)
2020-05-01 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2015-540)
2015-09-08 00:00:00
Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2020-1115)
2020-02-24 00:00:00
Fedora Update for libjpeg-turbo FEDORA-2015-2615
2015-03-06 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1875
2021-07-02 17:15:03
cve
cve
CVE-2014-9092
2017-10-10 13:29:00
mageia
mageia
Updated libjpeg packages fix security vulnerability
2014-12-23 23:35:35
fedora
fedora
[SECURITY] Fedora 21 Update: mingw-libjpeg-turbo-1.3.1-4.fc21
2015-01-02 05:04:43
[SECURITY] Fedora 21 Update: libjpeg-turbo-1.3.1-5.fc21
2015-03-06 07:01:45
[SECURITY] Fedora 20 Update: libjpeg-turbo-1.3.1-3.fc20
2015-03-06 07:01:05
cvelist
cvelist
CVE-2014-9092
2017-10-10 13:00:00
amazon
amazon
Low: libjpeg-turbo
2015-06-11 08:08:00
prion
prion
Design/Logic Flaw
2017-10-10 13:29:00
securityvulns
securityvulns
libjpeg buffer overflow
2015-01-13 00:00:00
[ MDVSA-2015:014 ] libjpeg
2015-01-13 00:00:00
debiancve
debiancve
CVE-2014-9092
2017-10-10 13:29:00
nvd
nvd
CVE-2014-9092
2017-10-10 13:29:00
ubuntu
ubuntu
libjpeg-turbo vulnerabilities
2018-07-10 00:00:00
libjpeg-turbo vulnerabilities
2018-07-09 00:00:00
cloudfoundry
cloudfoundry
USN-3706-1: libjpeg-turbo vulnerabilities | Cloud Foundry
2018-07-19 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.011 Low

EPSS

Percentile

84.8%

JSON
Related for UB:CVE-2014-9092
archlinux1nessus17openvas14rosalinux1cve1mageia1fedora4cvelist1amazon1prion1securityvulns2debiancve1nvd1ubuntu2cloudfoundry1