CVE-2013-6629

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.

References

http://advisories.mageia.org/MGASA-2013-0333.html

http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0080.html

http://bugs.ghostscript.com/show_bug.cgi?id=686980

http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123437.html

http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124108.html

http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124257.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-January/125470.html

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00085.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00086.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00087.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00119.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00120.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00121.html

http://lists.opensuse.org/opensuse-updates/2014-01/msg00002.html

http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html

http://marc.info/?l=bugtraq&m=140852886808946&w=2

http://marc.info/?l=bugtraq&m=140852974709252&w=2

http://rhn.redhat.com/errata/RHSA-2013-1803.html

http://rhn.redhat.com/errata/RHSA-2013-1804.html

http://secunia.com/advisories/56175

http://secunia.com/advisories/58974

http://secunia.com/advisories/59058

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://support.apple.com/kb/HT6150

http://support.apple.com/kb/HT6162

http://support.apple.com/kb/HT6163

http://www.debian.org/security/2013/dsa-2799

http://www.mandriva.com/security/advisories?name=MDVSA-2013:273

http://www.mozilla.org/security/announce/2013/mfsa2013-116.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

http://www.securityfocus.com/bid/63676

http://www.securitytracker.com/id/1029470

http://www.securitytracker.com/id/1029476

http://www.ubuntu.com/usn/USN-2052-1

http://www.ubuntu.com/usn/USN-2053-1

http://www.ubuntu.com/usn/USN-2060-1

http://www-01.ibm.com/support/docview.wss?uid=swg21672080

http://www-01.ibm.com/support/docview.wss?uid=swg21676746

https://access.redhat.com/errata/RHSA-2014:0413

https://access.redhat.com/errata/RHSA-2014:0414

https://bugzilla.mozilla.org/show_bug.cgi?id=891693

https://code.google.com/p/chromium/issues/detail?id=258723

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2013-6629

https://security.gentoo.org/glsa/201606-03

https://src.chromium.org/viewvc/chrome?revision=229729&view=revision

https://www.ibm.com/support/docview.wss?uid=swg21675973

Details

Source: MITRE

Published: 2013-11-19

Updated: 2018-01-05

Type: CWE-200

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:google:chrome:31.0.1650.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.5:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.6:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.7:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.9:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.10:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.11:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.12:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.13:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.14:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.15:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.16:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.17:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.18:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.19:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.20:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.22:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.23:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.25:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.26:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.27:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.28:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.29:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.30:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.31:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.32:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.33:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.34:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.35:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.41:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.42:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.43:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.44:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.45:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:31.0.1650.46:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* versions up to 31.0.1650.47 (inclusive)

Configuration 2

OR

cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:artifex:gpl_ghostscript:-:*:*:*:*:*:*:*

Tenable Plugins

View all (90 total)

IDNameProductFamilySeverity
99312Windows 8.1 and Windows Server 2012 R2 April 2017 Security UpdatesNessusWindows : Microsoft Bulletins
high
99310KB4019460: Security Update for the libjpeg Information Disclosure Vulnerability for Mono Framework (macOS)NessusMacOS X Local Security Checks
medium
99309KB4015383: Security Updates for the libjpeg Information Disclosure Vulnerability (April 2017)NessusWindows : Microsoft Bulletins
medium
99304Windows 7 and Windows 2008 R2 April 2017 Security Updates (Petya)NessusWindows : Microsoft Bulletins
high
99289KB4017094: Security Update for the libjpeg Information Disclosure Vulnerability for Microsoft Silverlight 5 (April 2017)NessusWindows
medium
99288KB4015583: Windows 10 Version 1703 April 2017 Cumulative UpdateNessusWindows : Microsoft Bulletins
high
99287KB4015221: Windows 10 Version 1507 April 2017 Cumulative UpdateNessusWindows : Microsoft Bulletins
high
99286KB4015217: Windows 10 1607 April 2017 Cumulative UpdateNessusWindows : Microsoft Bulletins
high
99285Windows Server 2012 April 2017 Security Updates (Petya)NessusWindows : Microsoft Bulletins
high
99282KB4015219: Windows 10 Version 1511 April 2017 Cumulative UpdateNessusWindows : Microsoft Bulletins
high
91480GLSA-201606-03 : libjpeg-turbo: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
91303F5 Networks BIG-IP : libjpeg vulnerability (K59503294)NessusF5 Networks Local Security Checks
medium
83625SUSE SLES10 Security Update : IBM Java 5 (SUSE-SU-2014:0732-1)NessusSuSE Local Security Checks
critical
80046openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1638-1)NessusSuSE Local Security Checks
critical
80045openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1645-1)NessusSuSE Local Security Checks
critical
79039RHEL 5 / 6 : IBM Java Runtime in Satellite Server (RHSA-2014:0982)NessusRed Hat Local Security Checks
critical
79011RHEL 5 / 6 : java-1.6.0-sun (RHSA-2014:0414)NessusRed Hat Local Security Checks
medium
79010RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0413)NessusRed Hat Local Security Checks
critical
77812IBM Notes 9.0.x < 9.0.1 Fix Pack 2 Multiple VulnerabilitiesNessusWindows
critical
77811IBM Domino 9.0.x < 9.0.1 Fix Pack 2 Multiple Vulnerabilities (credentialed check) (POODLE)NessusWindows
critical
77810IBM Domino 9.x < 9.0.1 Fix Pack 2 Multiple Vulnerabilities (uncredentialed check)NessusMisc.
critical
77728VMware Security Updates for vCenter Server (VMSA-2014-0008)NessusMisc.
critical
77727VMware vCenter Update Manager Multiple Java Vulnerabilities (VMSA-2014-0008)NessusWindows
critical
76900RHEL 7 : java-1.7.1-ibm (RHSA-2014:0705)NessusRed Hat Local Security Checks
critical
76870AIX Java Advisory : java_apr2014_advisory.ascNessusAIX Local Security Checks
critical
76303GLSA-201406-32 : IcedTea JDK: Multiple vulnerabilities (BEAST) (ROBOT)NessusGentoo Local Security Checks
critical
75366openSUSE Security Update : chromium (openSUSE-SU-2014:0065-1)NessusSuSE Local Security Checks
critical
75327openSUSE Security Update : seamonkey (openSUSE-SU-2014:0008-1)NessusSuSE Local Security Checks
critical
75241openSUSE Security Update : MozillaFirefox (openSUSE-SU-2013:1918-1)NessusSuSE Local Security Checks
critical
75240openSUSE Security Update : MozillaFirefox (openSUSE-SU-2013:1917-1)NessusSuSE Local Security Checks
critical
75239openSUSE Security Update : MozillaFirefox (openSUSE-SU-2013:1916-1)NessusSuSE Local Security Checks
critical
75225openSUSE Security Update : chromium (openSUSE-SU-2013:1861-1)NessusSuSE Local Security Checks
critical
75213openSUSE Security Update : chromium (openSUSE-SU-2013:1777-1)NessusSuSE Local Security Checks
critical
75212openSUSE Security Update : chromium (openSUSE-SU-2013:1776-1)NessusSuSE Local Security Checks
critical
74868openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1957-1)NessusSuSE Local Security Checks
critical
74867openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1959-1)NessusSuSE Local Security Checks
critical
74866openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1958-1)NessusSuSE Local Security Checks
critical
74402Fedora 20 : mingw-libjpeg-turbo-1.3.1-1.fc20 (2014-6870)NessusFedora Local Security Checks
medium
74400Fedora 19 : mingw-libjpeg-turbo-1.3.1-1.fc19 (2014-6859)NessusFedora Local Security Checks
medium
74284SuSE 11.3 Security Update : IBM Java 6 (SAT Patch Number 9256)NessusSuSE Local Security Checks
critical
74254SuSE 11.3 Security Update : IBM Java 7 (SAT Patch Number 9263)NessusSuSE Local Security Checks
critical
8250Apple TV < 6.1 Multiple VulnerabilitiesNessus Network MonitorInternet Services
high
74032RHEL 5 / 6 : java-1.5.0-ibm (RHSA-2014:0509)NessusRed Hat Local Security Checks
critical
74031RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2014:0508)NessusRed Hat Local Security Checks
critical
74007SuSE 11.3 Security Update : OpenJDK (SAT Patch Number 9209)NessusSuSE Local Security Checks
critical
74005RHEL 5 / 6 : java-1.7.0-ibm (RHSA-2014:0486)NessusRed Hat Local Security Checks
critical
73868Debian DSA-2923-1 : openjdk-7 - security updateNessusDebian Local Security Checks
critical
73608RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0412)NessusRed Hat Local Security Checks
critical
73571Oracle Java SE Multiple Vulnerabilities (April 2014 CPU) (Unix)NessusMisc.
critical
73570Oracle Java SE Multiple Vulnerabilities (April 2014 CPU)NessusWindows
critical
72962Apple TV < 6.1 Multiple VulnerabilitiesNessusMisc.
high
8155Apple iOS < 7.1 Multiple VulnerabilitiesNessus Network MonitorMobile Devices
high
72907Apple iOS < 7.1 Multiple VulnerabilitiesNessusMobile Devices
high
8138Mac OS X < 10.9.2 Multiple Vulnerabilities Nessus Network MonitorWeb Clients
critical
72688Mac OS X Multiple Vulnerabilities (Security Update 2014-001) (BEAST)NessusMacOS X Local Security Checks
critical
72687Mac OS X 10.9.x < 10.9.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
71903Fedora 19 : libjpeg-turbo-1.2.90-3.fc19 (2013-23722)NessusFedora Local Security Checks
medium
71785Fedora 18 : thunderbird-24.2.0-2.fc18 (2013-23291)NessusFedora Local Security Checks
critical
71627Fedora 20 : libjpeg-turbo-1.3.0-2.fc20 (2013-23749)NessusFedora Local Security Checks
medium
71579Amazon Linux AMI : libjpeg-turbo (ALAS-2013-267)NessusAmazon Linux Local Security Checks
medium
71563Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : libjpeg-turbo, libjpeg6b vulnerabilities (USN-2060-1)NessusUbuntu Local Security Checks
medium
71505Fedora 20 : firefox-26.0-3.fc20 / thunderbird-24.2.0-3.fc20 / xulrunner-26.0-2.fc20 (2013-23519)NessusFedora Local Security Checks
critical
71468Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : libjpeg (SSA:2013-350-02)NessusSlackware Local Security Checks
medium
71452FreeBSD : mozilla -- multiple vulnerabilities (dd116b19-64b3-11e3-868f-0025905a4771)NessusFreeBSD Local Security Checks
critical
71448Fedora 19 : thunderbird-24.2.0-2.fc19 (2013-23295)NessusFedora Local Security Checks
critical
71375Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : thunderbird vulnerabilities (USN-2053-1)NessusUbuntu Local Security Checks
critical
71374Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : firefox vulnerabilities (USN-2052-1)NessusUbuntu Local Security Checks
critical
71365Fedora 19 : firefox-26.0-2.fc19 / xulrunner-26.0-1.fc19 (2013-23127)NessusFedora Local Security Checks
critical
71349SeaMonkey < 2.23 Multiple VulnerabilitiesNessusWindows
critical
71348Mozilla Thunderbird < 24.2 Multiple VulnerabilitiesNessusWindows
critical
71347Firefox < 26.0 Multiple VulnerabilitiesNessusWindows
critical
71346Firefox ESR 24.x < 24.2 Multiple VulnerabilitiesNessusWindows
critical
71345Thunderbird < 24.2 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
71344Firefox < 26.0 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
71343Firefox ESR 24.x < 24.2 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
71339Scientific Linux Security Update : libjpeg-turbo on SL6.x i386/x86_64 (20131210)NessusScientific Linux Local Security Checks
medium
71338Scientific Linux Security Update : libjpeg on SL5.x i386/x86_64 (20131210)NessusScientific Linux Local Security Checks
medium
71333Oracle Linux 5 : libjpeg (ELSA-2013-1804)NessusOracle Linux Local Security Checks
medium
71291RHEL 5 : libjpeg (RHSA-2013:1804)NessusRed Hat Local Security Checks
medium
71290RHEL 6 : libjpeg-turbo (RHSA-2013:1803)NessusRed Hat Local Security Checks
medium
71287Oracle Linux 6 : libjpeg-turbo (ELSA-2013-1803)NessusOracle Linux Local Security Checks
medium
71272CentOS 5 : libjpeg (CESA-2013:1804)NessusCentOS Local Security Checks
medium
71271CentOS 6 : libjpeg-turbo (CESA-2013:1803)NessusCentOS Local Security Checks
medium
8059Google Chrome < 31.0.1650.48 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
critical
801611Google Chrome < 31.0.1650.48 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
71028Mandriva Linux Security Advisory : libjpeg (MDVSA-2013:273)NessusMandriva Local Security Checks
medium
70986Debian DSA-2799-1 : chromium-browser - several vulnerabilitiesNessusDebian Local Security Checks
critical
70917Google Chrome < 31.0.1650.48 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
critical
70916Google Chrome < 31.0.1650.48 Multiple VulnerabilitiesNessusWindows
critical
70865FreeBSD : chromium -- multiple vulnerabilities (3bfc7016-4bcc-11e3-b0cf-00262d5ed8ee)NessusFreeBSD Local Security Checks
critical