VulnerableCode Package Details - pkg:deb/debian/libjpeg-turbo@1:1.5.2-2%2Bdeb10u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libjpeg-turbo@1:1.5.2-2%2Bdeb10u1

Essentials
History (27)

purl	pkg:deb/debian/libjpeg-turbo@1:1.5.2-2%2Bdeb10u1

Next non-vulnerable version	1:2.1.5-2
Latest non-vulnerable version	1:2.1.5-2
Risk	4.2

Vulnerabilities affecting this package (8)

Vulnerability	Summary	Fixed by
VCID-77d3-x18w-a7f6 Aliases: CVE-2020-17541	Multiple vulnerabilities have been discovered in libjpeg-turbo, the worst of which could lead to arbitrary code execution.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-a3r5-u4q5-efhk Aliases: CVE-2020-35538	libjpeg-turbo: Null pointer dereference in jcopy_sample_rows() function	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-adpa-bp3z-vbhn Aliases: CVE-2018-14498	libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-rgsc-btdd-m3he Aliases: CVE-2020-13790	An information disclosure vulnerability in libjpeg-turbo allow remote attackers to obtain sensitive information.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-tvq2-6ujj-7yet Aliases: CVE-2018-11813	libjpeg: "cjpeg" utility large loop because read_pixel in rdtarga.c mishandles EOF	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ugd8-a68r-hugj Aliases: CVE-2017-15232	libjpeg-turbo: NULL pointer dereference in jdpostct.c and jquant1.c	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-w4km-zqts-3bhv Aliases: CVE-2019-2201	Several integer overflows in libjpeg-turbo might allow an attacker to execute arbitrary code.	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-zqqx-68x1-h3ak Aliases: CVE-2018-1152	libjpeg-turbo: Divide by zero allows for denial of service via crafted BMP image	1:2.0.6-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-vrpv-znq2-6yd9	libjpeg: improper handling of max_memory_to_use setting can lead to excessive memory consumption	CVE-2020-14152

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T01:05:33.889391+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:18:37.627445+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:13:10.760253+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:47:57.843105+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:31:08.118129+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:35:09.278775+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:01:40.684237+00:00	Debian Oval Importer	Fixing	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:06:34.555052+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:14:16.211686+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:37:34.708585+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:52:15.802776+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:50:52.143209+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:28:50.591692+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:12:29.706933+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:17:54.663509+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:45:44.021100+00:00	Debian Oval Importer	Fixing	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:52:11.876547+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:00:51.176539+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-09T00:07:34.807195+00:00	Debian Oval Importer	Affected by	VCID-zqqx-68x1-h3ak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:24:13.471639+00:00	Debian Oval Importer	Affected by	VCID-77d3-x18w-a7f6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:28:23.378696+00:00	Debian Oval Importer	Affected by	VCID-adpa-bp3z-vbhn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:09:12.244179+00:00	Debian Oval Importer	Affected by	VCID-a3r5-u4q5-efhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:53:41.254485+00:00	Debian Oval Importer	Affected by	VCID-ugd8-a68r-hugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:01:44.298497+00:00	Debian Oval Importer	Affected by	VCID-tvq2-6ujj-7yet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:30:45.885402+00:00	Debian Oval Importer	Fixing	VCID-vrpv-znq2-6yd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:39:08.714363+00:00	Debian Oval Importer	Affected by	VCID-w4km-zqts-3bhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:50:19.330559+00:00	Debian Oval Importer	Affected by	VCID-rgsc-btdd-m3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0