Description
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp.
References (2)
Core 2
Core References
Patch, Third Party Advisory x_refsource_misc
https://github.com/thorfdbg/libjpeg/commit/ea6315164b1649ff932a396b7600eac4bffcfaba
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/thorfdbg/libjpeg/issues/73
Scores
CVSS v3
5.5
EPSS
0.0014
EPSS Percentile
33.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (1)
libjpeg_project/libjpeg
1.63
Published
Jun 02, 2022
Tracked Since
Feb 18, 2026