Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 8 of 8 results

CVE-2023-46361

Low priority
Vulnerable

Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at /jbig2dec/jbig2.c.

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Vulnerable Vulnerable Not affected Not affected Not affected
Show less packages

CVE-2020-12268

Low priority

Some fixes available 1 of 4

jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow.

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2016-8729

Medium priority

Some fixes available 2 of 4

An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential...

2 affected packages

jbig2dec, mupdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Fixed
mupdf Not affected Not affected Not affected
Show less packages

CVE-2017-9216

Low priority

Some fixes available 1 of 12

libjbig2dec.a in Artifex jbig2dec 0.13, as used in MuPDF and Ghostscript, has a NULL pointer dereference in the jbig2_huffman_get function in jbig2_huffman.c. For example, the jbig2dec utility will crash (segmentation fault) when...

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Not affected Not affected Fixed
Show less packages

CVE-2017-7976

Medium priority

Some fixes available 4 of 5

Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of an integer overflow in the jbig2_image_compose function in jbig2_image.c during operations on a crafted .jb2 file, leading to a denial of service (application...

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Fixed
Show less packages

CVE-2017-7975

Medium priority

Some fixes available 4 of 5

Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted JBIG2 file, leading to a denial...

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Fixed
Show less packages

CVE-2017-7885

Low priority

Some fixes available 4 of 5

Artifex jbig2dec 0.13 has a heap-based buffer over-read leading to denial of service (application crash) or disclosure of sensitive information from process memory, because of an integer overflow in the jbig2_decode_symbol_dict...

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Fixed
Show less packages

CVE-2016-9601

Medium priority

Some fixes available 3 of 4

ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document...

1 affected packages

jbig2dec

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jbig2dec Not affected Not affected Fixed
Show less packages