#VU24199 Infinite loop in libjpeg - CVE-2018-11813


Vulnerability identifier: #VU24199

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2018-11813

CWE-ID: CWE-835

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libjpeg
Universal components / Libraries / Libraries used by multiple products

Vendor: libjpeg.sourceforge.net

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in read_pixel() function in rdtarga.c when processing EOF (end-of-line) characters. A remote attacker can use a specially crafted image to consume all available system resources and cause denial of service conditions.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libjpeg: 9c - 9

External links
https://lists.opensuse.org/opensuse-security-announce/2019-04/msg00015.html
https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00015.html
https://access.redhat.com/errata/RHSA-2019:2052
https://github.com/ChijinZ/security_advisories/blob/master/libjpeg-v9c/mail.pdf
https://github.com/ChijinZ/security_advisories/tree/master/libjpeg-v9c

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Dynamic System Analysis (DSA) Preboot
Multiple vulnerabilities in Autodesk InfraWorks
VMware Tanzu products update for libjpeg-turbo
Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA)
Ubuntu update for libjpeg-turbo
Ubuntu update for libjpeg-turbo
Ubuntu update for libjpeg6b
Amazon Linux AMI update for libjpeg-turbo
Red Hat update for libjpeg-turbo
OpenSUSE Linux update for libjpeg-turbo