Publishing details
Changelog
libjpeg-turbo (2.0.3-0ubuntu1.20.04.3) focal-security; urgency=medium
* SECURITY UPDATE: stack-based buffer overflow in the "transform"
component
- debian/patches/CVE-2020-17541.patch: fix very rare local buffer
overrun in jchuff.c.
- CVE-2020-17541
* SECURITY UPDATE: null pointer dereference
- debian/patches/CVE-2020-35538.patch: fix jpeg_skip_scanlines()
segfault w/merged upsamp in jdapistd.c, jdmerge.c, jdmerge.h,
jdmrg565.c, jdmrgext.c.
- debian/patches/CVE-2020-35538-2.patch: further jpeg_skip_scanlines()
fixes in CMakeLists.txt, croptest.in, jdapistd.c.
- CVE-2020-35538
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2021-46822.patch: fix issues w/loading 16-bit
PPMs/PGMs in rdppm.c.
- CVE-2021-46822
-- Marc Deslauriers <email address hidden> Wed, 21 Sep 2022 13:54:13 -0400
Builds
Built packages
-
libjpeg-turbo-progs
Programs for manipulating JPEG files
-
libjpeg-turbo-progs-dbgsym
debug symbols for libjpeg-turbo-progs
-
libjpeg-turbo-test
Program for benchmarking and testing libjpeg-turbo
-
libjpeg-turbo-test-dbgsym
debug symbols for libjpeg-turbo-test
-
libjpeg-turbo8
IJG JPEG compliant runtime library.
-
libjpeg-turbo8-dbg
Debugging symbols for the libjpeg-turbo library
-
libjpeg-turbo8-dev
Development files for the IJG JPEG library
-
libturbojpeg
IJG JPEG compliant runtime library.
-
libturbojpeg-dbgsym
debug symbols for libturbojpeg
-
libturbojpeg0-dev
Development files for the TurboJPEG library
Package files