| Errata ID | 586 |
|---|---|
| Date | 2019-01-23 |
| Source package | libjpeg-turbo |
| Fixed in version | 1:1.3.1-12+deb8u1 |
| Description | This update addresses the following issues: * Null pointer dereference in cjpeg (CVE-2016-3616) * Divide by zero allows for denial of service via crafted BMP image (CVE-2018-1152) * Divide By Zero in alloc_sarray function in jmemmgr.c (CVE-2018-11212) * Segmentation fault in get_text_gray_row function in rdppm.c (CVE-2018-11213) * Segmentation fault in get_text_rgb_row function in rdppm.c (CVE-2018-11214) |
| Additional notes | |
| CVE ID | CVE-2016-3616 CVE-2018-1152 CVE-2018-11212 CVE-2018-11213 CVE-2018-11214 |
| UCS Bug number | #48516 |
