Vulnerability Details CVE-2021-46822
The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap-based buffer overflow in the get_word_rgb_row function in rdppm.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/221567
- https://github.com/libjpeg-turbo/libjpeg-turbo/commit/f35fd27ec641c42d6b115bfa595e483ec58188d2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/221567
- https://github.com/libjpeg-turbo/libjpeg-turbo/commit/f35fd27ec641c42d6b115bfa595e483ec58188d2
Products affected by CVE-2021-46822
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:1.5.90
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.0
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.1
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.2
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.3
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.4
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.5
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.6
-
cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:2.0.90