{"id":"DEBIAN-CVE-2018-10126","details":"ijg-libjpeg before 9d, as used in tiff2pdf (from LibTIFF) and other products, does not check for a NULL pointer at a certain place in jpeg_fdct_16x16 in jfdctint.c.","modified":"2026-03-11T07:26:29.264939Z","published":"2018-04-21T21:29:00.290Z","upstream":["CVE-2018-10126"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2018-10126"}],"affected":[{"package":{"name":"tiff","ecosystem":"Debian:11","purl":"pkg:deb/debian/tiff?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4.2.0-1","4.2.0-1+deb11u1","4.2.0-1+deb11u2","4.2.0-1+deb11u3","4.2.0-1+deb11u4","4.2.0-1+deb11u5","4.2.0-1+deb11u6","4.2.0-1+deb11u7","4.3.0-1","4.3.0-2","4.3.0-3","4.3.0-4","4.3.0-5","4.3.0-6","4.3.0-7","4.3.0-8","4.4.0-1","4.4.0-2","4.4.0-3","4.4.0-4","4.4.0-5","4.4.0-6","4.4.0~rc1-1","4.5.0-1","4.5.0-2","4.5.0-3","4.5.0-4","4.5.0-5","4.5.0-6","4.5.0~rc1+git221213-1","4.5.0~rc1-1","4.5.0~rc3+git221213-1","4.5.1+git230720-1","4.5.1+git230720-2","4.5.1+git230720-3","4.5.1+git230720-4","4.5.1+git230720-5","4.5.1-1","4.5.1~rc3-1","4.6.0-1","4.6.0-2","4.7.0-1","4.7.0-2","4.7.0-3","4.7.0-4","4.7.0-5","4.7.1-1"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-10126.json"}},{"package":{"name":"tiff","ecosystem":"Debian:12","purl":"pkg:deb/debian/tiff?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4.5.0-6","4.5.0-6+deb12u1","4.5.0-6+deb12u2","4.5.0-6+deb12u3","4.5.1+git230720-1","4.5.1+git230720-2","4.5.1+git230720-3","4.5.1+git230720-4","4.5.1+git230720-5","4.5.1-1","4.5.1~rc3-1","4.6.0-1","4.6.0-2","4.7.0-1","4.7.0-2","4.7.0-3","4.7.0-4","4.7.0-5","4.7.1-1"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-10126.json"}},{"package":{"name":"tiff","ecosystem":"Debian:13","purl":"pkg:deb/debian/tiff?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4.7.0-3","4.7.0-3+deb13u1","4.7.0-4","4.7.0-5","4.7.1-1"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-10126.json"}},{"package":{"name":"tiff","ecosystem":"Debian:14","purl":"pkg:deb/debian/tiff?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["4.7.0-3","4.7.0-4","4.7.0-5","4.7.1-1"],"ecosystem_specific":{"urgency":"unimportant"},"database_specific":{"source":"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-10126.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}