CVE-2018-11212

An issue was discovered in libjpeg 9a. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.

Published : 2018-05-16 17:29 Updated : 2019-06-03 15:29

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Ijg Libjpeg 9a cpe:/a:ijg:libjpeg:9a
Netapp Oncommand Unified Manager cpe:/a:netapp:oncommand_unified_manager
Netapp Oncommand Workflow Automation cpe:/a:netapp:oncommand_workflow_automation
Netapp Snapmanager cpe:/a:netapp:snapmanager:::~~~oracle~~
Netapp Snapmanager cpe:/a:netapp:snapmanager:::~~~sap~~
Oracle Jdk 1.7.0 cpe:/a:oracle:jdk:1.7.0:update_201
Oracle Jdk 1.8.0 cpe:/a:oracle:jdk:1.8.0:update_192
Oracle Jdk 11.0.1 cpe:/a:oracle:jdk:11.0.1
Oracle Jre 8.0 cpe:/a:oracle:jre:8.0:update_191
Canonical Ubuntu Linux 12.04 cpe:/o:canonical:ubuntu_linux:12.04::~~esm~~~
Canonical Ubuntu Linux 14.04 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 18.04 cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Redhat Enterprise Linux Desktop 6.0 cpe:/o:redhat:enterprise_linux_desktop:6.0
Redhat Enterprise Linux Desktop 7.0 cpe:/o:redhat:enterprise_linux_desktop:7.0
Redhat Enterprise Linux Server 6.0 cpe:/o:redhat:enterprise_linux_server:6.0
Redhat Enterprise Linux Server 7.0 cpe:/o:redhat:enterprise_linux_server:7.0
Redhat Enterprise Linux Workstation 6.0 cpe:/o:redhat:enterprise_linux_workstation:6.0
Redhat Enterprise Linux Workstation 7.0 cpe:/o:redhat:enterprise_linux_workstation:7.0
Redhat Satellite 5.8 cpe:/a:redhat:satellite:5.8
Opensuse Leap 15.0 cpe:/o:opensuse:leap:15.0
  1. Debian (1) Search CVE
    1. Debian Linux (1) Search CVE
      1. 8.0
  2. Opensuse (1) Search CVE
    1. Leap (1) Search CVE
      1. 15.0
  3. Oracle (2) Search CVE
    1. Jre (1) Search CVE
      1. 8.0
    2. Jdk (3) Search CVE
      1. 1.7.0
      2. 1.8.0
      3. 11.0.1
  4. Netapp (3) Search CVE
    1. Oncommand Workflow Automation (1) Search CVE
    2. Oncommand Unified Manager (1) Search CVE
    3. Snapmanager (1) Search CVE
  5. Redhat (4) Search CVE
    1. Enterprise Linux Server (2) Search CVE
      1. 6.0
      2. 7.0
    2. Enterprise Linux Desktop (2) Search CVE
      1. 6.0
      2. 7.0
    3. Enterprise Linux Workstation (2) Search CVE
      1. 6.0
      2. 7.0
    4. Satellite (1) Search CVE
      1. 5.8
  6. Canonical (1) Search CVE
    1. Ubuntu Linux (4) Search CVE
      1. 12.04
      2. 14.04
      3. 16.04
      4. 18.04
  7. Ijg (1) Search CVE
    1. Libjpeg (1) Search CVE
      1. 9a

CWE

ID Name Description Links
CWE-369 Divide By Zero The product divides a value by zero. CVE

History of changes

Date Event
2019-06-03 15:29
2019-05-23 15:29
2019-05-16 16:29
2019-03-25 21:29
2019-03-21 16:00
2019-03-11 13:43
2019-03-08 11:29
2019-03-07 11:29
2019-01-23 11:29
2019-01-19 11:29
2019-01-16 19:29
2019-01-16 11:29
2018-07-12 01:29
2018-07-11 01:29
2018-06-15 19:37
2018-05-16 17:29

New CVE