{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","type":"deb","namespace":"debian","name":"libjpeg-turbo","version":"1:3.1.3-4","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/107474?format=json","vulnerability_id":"VCID-1hqj-h78x-1bha","summary":"several","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6630.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6630.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6630","reference_id":"","reference_type":"","scores":[{"value":"0.01521","scoring_system":"epss","scoring_elements":"0.81653","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01521","scoring_system":"epss","scoring_elements":"0.81714","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2931","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2931"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6802","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6802"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1031749","reference_id":"1031749","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1031749"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729867","reference_id":"729867","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729867"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729873","reference_id":"729873","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729873"},{"reference_url":"https://security.gentoo.org/glsa/201606-03","reference_id":"GLSA-201606-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201606-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-116","reference_id":"mfsa2013-116","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-116"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1803","reference_id":"RHSA-2013:1803","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1803"},{"reference_url":"https://usn.ubuntu.com/2052-1/","reference_id":"USN-2052-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2052-1/"},{"reference_url":"https://usn.ubuntu.com/2053-1/","reference_id":"USN-2053-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2053-1/"},{"reference_url":"https://usn.ubuntu.com/2060-1/","reference_id":"USN-2060-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2060-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53911?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1.3.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1.3.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2013-6630"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1hqj-h78x-1bha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4502?format=json","vulnerability_id":"VCID-3vnn-4kum-4qgk","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11212.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11212.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11212","reference_id":"","reference_type":"","scores":[{"value":"0.02115","scoring_system":"epss","scoring_elements":"0.84482","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02115","scoring_system":"epss","scoring_elements":"0.84537","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11212"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11212","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11212"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579973","reference_id":"1579973","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579973"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176","reference_id":"902176","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0469","reference_id":"RHSA-2019:0469","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0469"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0472","reference_id":"RHSA-2019:0472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0473","reference_id":"RHSA-2019:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0474","reference_id":"RHSA-2019:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:0640","reference_id":"RHSA-2019:0640","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:0640"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:1238","reference_id":"RHSA-2019:1238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:1238"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"},{"reference_url":"https://usn.ubuntu.com/5497-1/","reference_id":"USN-5497-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5497-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5497-2/","reference_id":"USN-USN-5497-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5497-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53913?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.4.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.4.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-11212"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3vnn-4kum-4qgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184900?format=json","vulnerability_id":"VCID-69ra-y8z1-r3ft","summary":"Multiple vulnerabilities have been discovered in libjpeg-turbo, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17541.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17541.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17541","reference_id":"","reference_type":"","scores":[{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.6617","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00494","scoring_system":"epss","scoring_elements":"0.66264","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-17541"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17541","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17541"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/392","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/392"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1968036","reference_id":"1968036","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1968036"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-17541","reference_id":"CVE-2020-17541","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-17541"},{"reference_url":"https://security.gentoo.org/glsa/202405-20","reference_id":"GLSA-202405-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-20"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4288","reference_id":"RHSA-2021:4288","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4288"},{"reference_url":"https://usn.ubuntu.com/5553-1/","reference_id":"USN-5553-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5553-1/"},{"reference_url":"https://usn.ubuntu.com/5631-1/","reference_id":"USN-5631-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5631-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2020-17541"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-69ra-y8z1-r3ft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7713?format=json","vulnerability_id":"VCID-83k5-fncg-yfcc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13790.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13790.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13790","reference_id":"","reference_type":"","scores":[{"value":"0.00483","scoring_system":"epss","scoring_elements":"0.65698","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00483","scoring_system":"epss","scoring_elements":"0.65795","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13790"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13790","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13790"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847155","reference_id":"1847155","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847155"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962829","reference_id":"962829","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962829"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-13790","reference_id":"CVE-2020-13790","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-13790"},{"reference_url":"https://security.gentoo.org/glsa/202010-03","reference_id":"GLSA-202010-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202010-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7540","reference_id":"RHSA-2025:7540","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7540"},{"reference_url":"https://usn.ubuntu.com/4386-1/","reference_id":"USN-4386-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4386-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2020-13790"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-83k5-fncg-yfcc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10339?format=json","vulnerability_id":"VCID-8yrs-vqb7-jygc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-46822.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-46822.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-46822","reference_id":"","reference_type":"","scores":[{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.34731","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00146","scoring_system":"epss","scoring_elements":"0.3491","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-46822"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46822","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46822"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2100044","reference_id":"2100044","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2100044"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1068","reference_id":"RHSA-2023:1068","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1068"},{"reference_url":"https://usn.ubuntu.com/5631-1/","reference_id":"USN-5631-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5631-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53917?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2021-46822"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8yrs-vqb7-jygc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87490?format=json","vulnerability_id":"VCID-ahc4-nvxq-tuhu","summary":"Heap-based buffer overflow in the get_sos function in jdmarker.c in libjpeg-turbo 1.2.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large component count in the header of a JPEG image.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2806","reference_id":"","reference_type":"","scores":[{"value":"0.02359","scoring_system":"epss","scoring_elements":"0.85319","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02359","scoring_system":"epss","scoring_elements":"0.85267","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2806"},{"reference_url":"http://www.openwall.com/lists/oss-security/2012/07/17/3","reference_id":"3","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://www.openwall.com/lists/oss-security/2012/07/17/3"},{"reference_url":"http://secunia.com/advisories/49883","reference_id":"49883","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://secunia.com/advisories/49883"},{"reference_url":"http://secunia.com/advisories/50753","reference_id":"50753","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://secunia.com/advisories/50753"},{"reference_url":"http://www.securityfocus.com/bid/54480","reference_id":"54480","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://www.securityfocus.com/bid/54480"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/76952","reference_id":"76952","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/76952"},{"reference_url":"http://osvdb.org/84040","reference_id":"84040","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://osvdb.org/84040"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:121","reference_id":"advisories?name=MDVSA-2012:121","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:121"},{"reference_url":"https://security.gentoo.org/glsa/201209-13","reference_id":"GLSA-201209-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-13"},{"reference_url":"http://security.gentoo.org/glsa/glsa-201209-13.xml","reference_id":"glsa-201209-13.xml","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://security.gentoo.org/glsa/glsa-201209-13.xml"},{"reference_url":"http://libjpeg-turbo.svn.sourceforge.net/viewvc/libjpeg-turbo?view=revision&revision=830","reference_id":"libjpeg-turbo?view=revision&revision=830","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"http://libjpeg-turbo.svn.sourceforge.net/viewvc/libjpeg-turbo?view=revision&revision=830"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=759802","reference_id":"show_bug.cgi?id=759802","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=759802"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=826849","reference_id":"show_bug.cgi?id=826849","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-21T19:56:19Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=826849"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2012-2806"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ahc4-nvxq-tuhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217736?format=json","vulnerability_id":"VCID-bw2j-kszw-13fu","summary":"The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20330.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20330.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20330","reference_id":"","reference_type":"","scores":[{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.56565","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00334","scoring_system":"epss","scoring_elements":"0.56684","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20330"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1665223","reference_id":"1665223","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1665223"},{"reference_url":"https://usn.ubuntu.com/4190-1/","reference_id":"USN-4190-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4190-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-20330"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bw2j-kszw-13fu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8563?format=json","vulnerability_id":"VCID-c22h-cbq6-8yf9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35538.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35538.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35538","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07924","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07959","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35538"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122387","reference_id":"2122387","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2122387"},{"reference_url":"https://usn.ubuntu.com/5631-1/","reference_id":"USN-5631-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5631-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53916?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2020-35538"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c22h-cbq6-8yf9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15309?format=json","vulnerability_id":"VCID-d4cv-a8tc-v3a3","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2804.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-2804.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-2804","reference_id":"","reference_type":"","scores":[{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23885","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23689","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-2804"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/668#issuecomment-1492586118","reference_id":"668#issuecomment-1492586118","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/668#issuecomment-1492586118"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/675","reference_id":"675","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/issues/675"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/commit/9f756bc67a84d4566bf74a0c2432aa55da404021","reference_id":"9f756bc67a84d4566bf74a0c2432aa55da404021","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/commit/9f756bc67a84d4566bf74a0c2432aa55da404021"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-2804","reference_id":"CVE-2023-2804","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-2804"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2804","reference_id":"CVE-2023-2804","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2804"},{"reference_url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01006.html","reference_id":"intel-sa-01006.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01006.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2208447","reference_id":"show_bug.cgi?id=2208447","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-16T15:15:55Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2208447"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2023-2804"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d4cv-a8tc-v3a3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/205819?format=json","vulnerability_id":"VCID-da6k-rzsy-nbbq","summary":"An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11214.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11214.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11214","reference_id":"","reference_type":"","scores":[{"value":"0.01047","scoring_system":"epss","scoring_elements":"0.77922","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01047","scoring_system":"epss","scoring_elements":"0.7799","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11214"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11214","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11214"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579980","reference_id":"1579980","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579980"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176","reference_id":"902176","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"},{"reference_url":"https://usn.ubuntu.com/5497-1/","reference_id":"USN-5497-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5497-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5497-2/","reference_id":"USN-USN-5497-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5497-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53913?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.4.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.4.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-11214"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-da6k-rzsy-nbbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217737?format=json","vulnerability_id":"VCID-fdmf-51eh-hkep","summary":"In IJG JPEG (aka libjpeg) from version 8 through 9c, jdhuff.c has an out-of-bounds array read for certain table pointers.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14153.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14153.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14153","reference_id":"","reference_type":"","scores":[{"value":"0.00345","scoring_system":"epss","scoring_elements":"0.5745","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00345","scoring_system":"epss","scoring_elements":"0.57567","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14153"},{"reference_url":"https://bugs.gentoo.org/727908","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.gentoo.org/727908"},{"reference_url":"http://www.ijg.org/files/jpegsrc.v9d.tar.gz","reference_id":"","reference_type":"","scores":[],"url":"http://www.ijg.org/files/jpegsrc.v9d.tar.gz"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1849032","reference_id":"1849032","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1849032"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14153","reference_id":"CVE-2020-14153","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14153"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2020-14153"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fdmf-51eh-hkep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/159?format=json","vulnerability_id":"VCID-fxg1-b1u1-u7af","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6629.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6629.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6629","reference_id":"","reference_type":"","scores":[{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55892","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.56013","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2931","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2931"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6802","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6802"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0429","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0429"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0446","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0446"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0451","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0451"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0454","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0454"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0455","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0455"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0458","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0458"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0459","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0459"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0460","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0460"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0461","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0461"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1876","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1876"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2397","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2397"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2403","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2403"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2412","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2412"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2413","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2413"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2414","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2414"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2421","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2421"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2423","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2423"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2427","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2427"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1031734","reference_id":"1031734","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1031734"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729867","reference_id":"729867","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729867"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729873","reference_id":"729873","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=729873"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://security.gentoo.org/glsa/201606-03","reference_id":"GLSA-201606-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201606-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-116","reference_id":"mfsa2013-116","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2013-116"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1803","reference_id":"RHSA-2013:1803","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1803"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1804","reference_id":"RHSA-2013:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1804"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0412","reference_id":"RHSA-2014:0412","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0412"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0413","reference_id":"RHSA-2014:0413","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0413"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0414","reference_id":"RHSA-2014:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0486","reference_id":"RHSA-2014:0486","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0508","reference_id":"RHSA-2014:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0509","reference_id":"RHSA-2014:0509","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0509"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0705","reference_id":"RHSA-2014:0705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0705"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0982","reference_id":"RHSA-2014:0982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0982"},{"reference_url":"https://usn.ubuntu.com/2052-1/","reference_id":"USN-2052-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2052-1/"},{"reference_url":"https://usn.ubuntu.com/2053-1/","reference_id":"USN-2053-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2053-1/"},{"reference_url":"https://usn.ubuntu.com/2060-1/","reference_id":"USN-2060-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2060-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53911?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1.3.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1.3.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2013-6629"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fxg1-b1u1-u7af"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/203631?format=json","vulnerability_id":"VCID-gw6v-qv29-8qhc","summary":"libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9092.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9092.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9092","reference_id":"","reference_type":"","scores":[{"value":"0.01578","scoring_system":"epss","scoring_elements":"0.81979","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01578","scoring_system":"epss","scoring_elements":"0.8204","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9092"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1169845","reference_id":"1169845","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1169845"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768369","reference_id":"768369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768369"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53912?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.3.1-11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.3.1-11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2014-9092"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gw6v-qv29-8qhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197832?format=json","vulnerability_id":"VCID-h3cj-gd8w-dyg4","summary":"denial of service","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20205.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20205.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20205","reference_id":"","reference_type":"","scores":[{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65786","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65883","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-20205"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1937385","reference_id":"1937385","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1937385"},{"reference_url":"https://security.archlinux.org/AVG-1671","reference_id":"AVG-1671","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1671"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-20205","reference_id":"CVE-2021-20205","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-20205"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2021-20205"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h3cj-gd8w-dyg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217735?format=json","vulnerability_id":"VCID-m54b-vyu2-37bs","summary":"A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses libjpeg. Android ID: A-30259087.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6702","reference_id":"","reference_type":"","scores":[{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62623","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00424","scoring_system":"epss","scoring_elements":"0.62724","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6702"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2016-6702"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m54b-vyu2-37bs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4801?format=json","vulnerability_id":"VCID-quqm-z7nk-kuhj","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14498.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14498.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14498","reference_id":"","reference_type":"","scores":[{"value":"0.00299","scoring_system":"epss","scoring_elements":"0.53654","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00299","scoring_system":"epss","scoring_elements":"0.5378","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14498"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1687424","reference_id":"1687424","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1687424"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924678","reference_id":"924678","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3705","reference_id":"RHSA-2019:3705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3705"},{"reference_url":"https://usn.ubuntu.com/4190-1/","reference_id":"USN-4190-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4190-1/"},{"reference_url":"https://usn.ubuntu.com/5553-1/","reference_id":"USN-5553-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5553-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-14498"],"risk_score":2.0,"exploitability":"0.5","weighted_severity":"4.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-quqm-z7nk-kuhj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/205818?format=json","vulnerability_id":"VCID-rcb9-tgrp-hkcb","summary":"An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11213.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11213.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11213","reference_id":"","reference_type":"","scores":[{"value":"0.01054","scoring_system":"epss","scoring_elements":"0.77989","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01054","scoring_system":"epss","scoring_elements":"0.78057","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11213"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11213","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11213"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579979","reference_id":"1579979","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579979"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176","reference_id":"902176","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"},{"reference_url":"https://usn.ubuntu.com/5497-1/","reference_id":"USN-5497-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5497-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5497-2/","reference_id":"USN-USN-5497-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5497-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53913?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.4.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.4.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-11213"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcb9-tgrp-hkcb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6872?format=json","vulnerability_id":"VCID-t6aw-n8de-87b1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2201.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2201.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2201","reference_id":"","reference_type":"","scores":[{"value":"0.01465","scoring_system":"epss","scoring_elements":"0.81304","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01465","scoring_system":"epss","scoring_elements":"0.81364","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2201"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2201","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2201"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1770982","reference_id":"1770982","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1770982"},{"reference_url":"https://security.archlinux.org/AVG-1067","reference_id":"AVG-1067","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1067"},{"reference_url":"https://security.gentoo.org/glsa/202003-23","reference_id":"GLSA-202003-23","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-23"},{"reference_url":"https://usn.ubuntu.com/4190-1/","reference_id":"USN-4190-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4190-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2019-2201"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t6aw-n8de-87b1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4538?format=json","vulnerability_id":"VCID-tt2q-rq4a-9ufp","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1152.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1152.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1152","reference_id":"","reference_type":"","scores":[{"value":"0.00743","scoring_system":"epss","scoring_elements":"0.7346","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00743","scoring_system":"epss","scoring_elements":"0.73533","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1152"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1152","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1152"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1593554","reference_id":"1593554","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1593554"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902950","reference_id":"902950","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902950"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-1152"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tt2q-rq4a-9ufp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/156390?format=json","vulnerability_id":"VCID-u58a-j3fv-xbdk","summary":"libjpeg-turbo version 2.0.90 has a heap-based buffer over-read (2 bytes) in decompress_smooth_data in jdcoefct.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29390.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29390.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-29390","reference_id":"","reference_type":"","scores":[{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20548","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00066","scoring_system":"epss","scoring_elements":"0.20726","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-29390"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235521","reference_id":"2235521","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235521"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27NR3KG553CG6LGPMP6SHWEVHTYPL6RC/","reference_id":"27NR3KG553CG6LGPMP6SHWEVHTYPL6RC","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/27NR3KG553CG6LGPMP6SHWEVHTYPL6RC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/","reference_id":"6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29390","reference_id":"CVE-2021-29390","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29390"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/commits/main/jdcoefct.c","reference_id":"jdcoefct.c","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/commits/main/jdcoefct.c"},{"reference_url":"https://github.com/libjpeg-turbo/libjpeg-turbo/blob/4e52b66f342a803d3b8099b79607e3158d3a241c/jdcoefct.c#L595","reference_id":"jdcoefct.c#L595","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://github.com/libjpeg-turbo/libjpeg-turbo/blob/4e52b66f342a803d3b8099b79607e3158d3a241c/jdcoefct.c#L595"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/","reference_id":"KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2295","reference_id":"RHSA-2024:2295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2295"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1943797","reference_id":"show_bug.cgi?id=1943797","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:08:32Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1943797"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2021-29390"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u58a-j3fv-xbdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3036?format=json","vulnerability_id":"VCID-utmg-a6a7-rfat","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15232.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15232","reference_id":"","reference_type":"","scores":[{"value":"0.00373","scoring_system":"epss","scoring_elements":"0.59421","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00373","scoring_system":"epss","scoring_elements":"0.5953","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15232"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:N/I:N/A:P"},{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500678","reference_id":"1500678","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500678"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878567","reference_id":"878567","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878567"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2017-15232"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-utmg-a6a7-rfat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4582?format=json","vulnerability_id":"VCID-wgw2-scc3-dyaa","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11813.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11813.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11813","reference_id":"","reference_type":"","scores":[{"value":"0.00278","scoring_system":"epss","scoring_elements":"0.51565","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00278","scoring_system":"epss","scoring_elements":"0.51695","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-11813"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11813","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11813"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1588803","reference_id":"1588803","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1588803"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904719","reference_id":"904719","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904719"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://usn.ubuntu.com/5497-1/","reference_id":"USN-5497-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5497-1/"},{"reference_url":"https://usn.ubuntu.com/5553-1/","reference_id":"USN-5553-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5553-1/"},{"reference_url":"https://usn.ubuntu.com/5631-1/","reference_id":"USN-5631-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5631-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5497-2/","reference_id":"USN-USN-5497-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5497-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53914?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-11813"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wgw2-scc3-dyaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7743?format=json","vulnerability_id":"VCID-wtfr-bfnn-2qat","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14152.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14152.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14152","reference_id":"","reference_type":"","scores":[{"value":"0.01168","scoring_system":"epss","scoring_elements":"0.79059","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01168","scoring_system":"epss","scoring_elements":"0.79124","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14152"},{"reference_url":"https://bugs.gentoo.org/727908","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.gentoo.org/727908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14152","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14152"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"http://www.ijg.org/files/jpegsrc.v9d.tar.gz","reference_id":"","reference_type":"","scores":[],"url":"http://www.ijg.org/files/jpegsrc.v9d.tar.gz"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1849026","reference_id":"1849026","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1849026"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14152","reference_id":"CVE-2020-14152","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14152"},{"reference_url":"https://usn.ubuntu.com/5497-1/","reference_id":"USN-5497-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5497-1/"},{"reference_url":"https://usn.ubuntu.com/5553-1/","reference_id":"USN-5553-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5553-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5497-2/","reference_id":"USN-USN-5497-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5497-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53915?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.5.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.5.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2020-14152"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wtfr-bfnn-2qat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5242?format=json","vulnerability_id":"VCID-xfmz-e1h7-z3fw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19664.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19664.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-19664","reference_id":"","reference_type":"","scores":[{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44653","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44804","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-19664"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1656218","reference_id":"1656218","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1656218"},{"reference_url":"https://usn.ubuntu.com/4190-1/","reference_id":"USN-4190-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4190-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53907?format=json","purl":"pkg:deb/debian/libjpeg-turbo@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2018-19664"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xfmz-e1h7-z3fw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1184?format=json","vulnerability_id":"VCID-z74s-wxsb-t3ec","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3616.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3616.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3616","reference_id":"","reference_type":"","scores":[{"value":"0.016","scoring_system":"epss","scoring_elements":"0.8211","published_at":"2026-06-11T12:55:00Z"},{"value":"0.016","scoring_system":"epss","scoring_elements":"0.82172","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3616"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3616","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3616"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1319661","reference_id":"1319661","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1319661"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819969","reference_id":"819969","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819969"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2052","reference_id":"RHSA-2019:2052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2052"},{"reference_url":"https://usn.ubuntu.com/3706-1/","reference_id":"USN-3706-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-1/"},{"reference_url":"https://usn.ubuntu.com/3706-2/","reference_id":"USN-3706-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3706-2/"},{"reference_url":"https://usn.ubuntu.com/USN-5336-1/","reference_id":"USN-USN-5336-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5336-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/53913?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:1.4.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:1.4.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53908?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.0.6-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8yrs-vqb7-jygc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.0.6-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53906?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53910?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:2.1.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:2.1.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/53909?format=json","purl":"pkg:deb/debian/libjpeg-turbo@1:3.1.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}],"aliases":["CVE-2016-3616"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z74s-wxsb-t3ec"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjpeg-turbo@1:3.1.3-4%3Fdistro=trixie"}