VulnerableCode Package Details - pkg:deb/debian/libjpeg-turbo@1:1.5.1-2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libjpeg-turbo@1:1.5.1-2

Essentials
History (39)

purl	pkg:deb/debian/libjpeg-turbo@1:1.5.1-2

Next non-vulnerable version	1:2.1.5-2
Latest non-vulnerable version	1:2.1.5-2
Risk	4.2

Vulnerabilities affecting this package (9)

Vulnerability	Summary	Fixed by
VCID-77d3-x18w-a7f6 Aliases: CVE-2020-17541	Multiple vulnerabilities have been discovered in libjpeg-turbo, the worst of which could lead to arbitrary code execution.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-a3r5-u4q5-efhk Aliases: CVE-2020-35538	libjpeg-turbo: Null pointer dereference in jcopy_sample_rows() function	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-adpa-bp3z-vbhn Aliases: CVE-2018-14498	libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-rgsc-btdd-m3he Aliases: CVE-2020-13790	An information disclosure vulnerability in libjpeg-turbo allow remote attackers to obtain sensitive information.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-tvq2-6ujj-7yet Aliases: CVE-2018-11813	libjpeg: "cjpeg" utility large loop because read_pixel in rdtarga.c mishandles EOF	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ugd8-a68r-hugj Aliases: CVE-2017-15232	libjpeg-turbo: NULL pointer dereference in jdpostct.c and jquant1.c	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-vrpv-znq2-6yd9 Aliases: CVE-2020-14152	libjpeg: improper handling of max_memory_to_use setting can lead to excessive memory consumption	1:1.5.2-2+deb10u1 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-w4km-zqts-3bhv Aliases: CVE-2019-2201	Several integer overflows in libjpeg-turbo might allow an attacker to execute arbitrary code.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-zqqx-68x1-h3ak Aliases: CVE-2018-1152	libjpeg-turbo: Divide by zero allows for denial of service via crafted BMP image	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-2eke-m7j3-1qc5	libjpeg-turbo: Divide By Zero in alloc_sarray function in jmemmgr.c	CVE-2018-11212
VCID-95f9-st4n-wydt	libjpeg: Segmentation fault in get_text_rgb_row function in rdppm.c	CVE-2018-11214
VCID-f5wv-ttaf-r7f4	libjpeg: null pointer dereference in cjpeg	CVE-2016-3616
VCID-rswk-24y5-67dn	libjpeg: Segmentation fault in get_text_gray_row function in rdppm.c	CVE-2018-11213

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T01:05:33.885857+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:18:37.624001+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:13:10.755730+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:08:45.069727+00:00	Debian Oval Importer	Fixing	VCID-rswk-24y5-67dn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:47:57.834689+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:31:08.113770+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:53:41.320027+00:00	Debian Oval Importer	Fixing	VCID-f5wv-ttaf-r7f4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:53:10.234911+00:00	Debian Oval Importer	Fixing	VCID-2eke-m7j3-1qc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:35:09.274841+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:01:40.680843+00:00	Debian Oval Importer	Affected by	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:42:31.804130+00:00	Debian Oval Importer	Fixing	VCID-95f9-st4n-wydt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:06:34.551478+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:14:16.208409+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:37:34.704812+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:52:15.798890+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:50:52.139277+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:46:37.908389+00:00	Debian Oval Importer	Fixing	VCID-rswk-24y5-67dn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:28:50.587815+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:12:29.703246+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:35:49.620431+00:00	Debian Oval Importer	Fixing	VCID-f5wv-ttaf-r7f4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:35:20.364319+00:00	Debian Oval Importer	Fixing	VCID-2eke-m7j3-1qc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:17:54.659685+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:45:44.017046+00:00	Debian Oval Importer	Affected by	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:26:53.717660+00:00	Debian Oval Importer	Fixing	VCID-95f9-st4n-wydt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:52:11.872712+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:00:51.172573+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-09T00:07:34.802785+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:24:13.467159+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:28:23.373378+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:24:22.285349+00:00	Debian Oval Importer	Fixing	VCID-rswk-24y5-67dn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:09:12.239498+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:53:41.249827+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:19:02.580584+00:00	Debian Oval Importer	Fixing	VCID-f5wv-ttaf-r7f4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:18:33.833947+00:00	Debian Oval Importer	Fixing	VCID-2eke-m7j3-1qc5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:01:44.293856+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:30:45.880890+00:00	Debian Oval Importer	Affected by	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:12:43.438618+00:00	Debian Oval Importer	Fixing	VCID-95f9-st4n-wydt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:39:08.711693+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:50:19.325016+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0