CVE-2020-6624

Upstream information

CVE-2020-6624 at MITRE

Description

jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.

---

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having low severity.

SUSE Bugzilla entry: 1160547 [NEW]

SUSE Security Advisories:

• openSUSE-SU-2021:0743-1, published Sun May 16 21:38:55 2021
• openSUSE-SU-2021:0752-1, published Wed May 19 21:39:26 2021

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Package Hub for SUSE Linux Enterprise 15 SP2	jhead >= 3.06.0.1-bp152.4.6.1	Patchnames: openSUSE-2021-752
openSUSE Leap 15.2	jhead >= 3.06.0.1-lp152.7.6.1 jhead-debuginfo >= 3.06.0.1-lp152.7.6.1 jhead-debugsource >= 3.06.0.1-lp152.7.6.1	Patchnames: openSUSE-2021-743