MGASA-2020-0267

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2020-0267.html
Import Source
https://advisories.mageia.org/MGASA-2020-0267.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2020-0267
Related
Published
2020-06-19T10:25:21Z
Modified
2020-06-19T09:32:33Z
Summary
Updated libjpeg packages fix security vulnerability
Details

Updated libjpeg packages fix security vulnerability:

libjpeg-turbo 2.0.4 has a heap-based buffer over-read in getrgbrow() in rdppm.c via a malformed PPM input file (CVE-2020-13790).

References
Credits

Affected packages

Mageia:7 / libjpeg

Package

Name
libjpeg
Purl
pkg:rpm/mageia/libjpeg?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.0.4-1.1.mga7

Ecosystem specific 

{
    "section": "core"
}