CVE-2018-11212

An issue was discovered in libjpeg 9a. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

Published : 2018-05-16 17:29 Updated : 2019-03-25 21:29

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Netapp Oncommand Unified Manager cpe:/a:netapp:oncommand_unified_manager
Netapp Oncommand Workflow Automation cpe:/a:netapp:oncommand_workflow_automation
Netapp Snapmanager cpe:/a:netapp:snapmanager:::~~~oracle~~
Netapp Snapmanager cpe:/a:netapp:snapmanager:::~~~sap~~
Oracle Jdk 1.7.0 cpe:/a:oracle:jdk:1.7.0:update_201
Oracle Jdk 1.8.0 cpe:/a:oracle:jdk:1.8.0:update_192
Oracle Jdk 11.0.1 cpe:/a:oracle:jdk:11.0.1
Oracle Jre 8.0 cpe:/a:oracle:jre:8.0:update_191
Canonical Ubuntu Linux 12.04 cpe:/o:canonical:ubuntu_linux:12.04::~~esm~~~
Canonical Ubuntu Linux 14.04 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 18.04 cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Redhat Enterprise Linux Desktop 6.0 cpe:/o:redhat:enterprise_linux_desktop:6.0
Redhat Enterprise Linux Desktop 7.0 cpe:/o:redhat:enterprise_linux_desktop:7.0
Redhat Enterprise Linux Server 6.0 cpe:/o:redhat:enterprise_linux_server:6.0
Redhat Enterprise Linux Server 7.0 cpe:/o:redhat:enterprise_linux_server:7.0
Redhat Enterprise Linux Workstation 6.0 cpe:/o:redhat:enterprise_linux_workstation:6.0
Redhat Enterprise Linux Workstation 7.0 cpe:/o:redhat:enterprise_linux_workstation:7.0
Ijg Libjpeg 9a cpe:/a:ijg:libjpeg:9a
  1. Redhat (3) Search CVE
    1. Enterprise Linux Workstation (2) Search CVE
      1. 6.0
      2. 7.0
    2. Enterprise Linux Desktop (2) Search CVE
      1. 6.0
      2. 7.0
    3. Enterprise Linux Server (2) Search CVE
      1. 6.0
      2. 7.0
  2. Debian (1) Search CVE
    1. Debian Linux (1) Search CVE
      1. 8.0
  3. Ijg (1) Search CVE
    1. Libjpeg (1) Search CVE
      1. 9a
  4. Canonical (1) Search CVE
    1. Ubuntu Linux (4) Search CVE
      1. 12.04
      2. 14.04
      3. 16.04
      4. 18.04
  5. Netapp (3) Search CVE
    1. Oncommand Unified Manager (1) Search CVE
    2. Oncommand Workflow Automation (1) Search CVE
    3. Snapmanager (1) Search CVE
  6. Oracle (2) Search CVE
    1. Jre (1) Search CVE
      1. 8.0
    2. Jdk (3) Search CVE
      1. 1.7.0
      2. 1.8.0
      3. 11.0.1

CWE

ID Name Description Links
CWE-369 Divide By Zero The product divides a value by zero. CVE

History of changes

Date Event
2019-03-25 21:29
2019-03-21 16:00
2019-03-11 13:43
2019-03-08 11:29
2019-03-07 11:29
2019-01-23 11:29
2019-01-19 11:29
2019-01-16 19:29
2019-01-16 11:29
2018-07-12 01:29
2018-07-11 01:29
2018-06-15 19:37
2018-05-16 17:29

New CVE