[Bug 1120646] VUL-1: CVE-2018-20330: libjpeg-turbo: tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image

3 Jan 2019

      http://bugzilla.opensuse.org/show_bug.cgi?id=1120646
http://bugzilla.opensuse.org/show_bug.cgi?id=1120646#c1

--- Comment #1 from Karol Babioch  ---
The affected code was only introduced with upstream commit 19c791cd, which
first appeared in these tags:

1.5.90
2.0.0
2.0.1

So, while Factory is affected, SUSE codestreams are not.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 1120646] VUL-1: CVE-2018-20330: libjpeg-turbo: tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image

bugzilla_noreply＠novell.com