First published: Mon Dec 09 2013(Updated: )
The libjpeg package contains a library of functions for manipulating JPEG<br>images. It also contains simple client programs for accessing the<br>libjpeg functions.<br>An uninitialized memory read issue was found in the way libjpeg decoded<br>images with missing Start Of Scan (SOS) JPEG markers. A remote attacker<br>could create a specially crafted JPEG image that, when decoded, could<br>possibly lead to a disclosure of potentially sensitive information.<br>(CVE-2013-6629)<br>All libjpeg users are advised to upgrade to this updated package, which<br>contains a backported patch to correct this issue.<br>
Affected Software | Affected Version | How to fix |
---|
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.