{"affected":[{"ecosystem_specific":{"binaries":[{"libjpeg62":"62.2.0-5.15.7","libjpeg62-devel":"62.2.0-5.15.7","libjpeg8":"8.1.2-5.15.7","libjpeg8-devel":"8.1.2-5.15.7","libturbojpeg0":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP1","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg62":"62.2.0-5.15.7","libjpeg62-devel":"62.2.0-5.15.7","libjpeg8":"8.1.2-5.15.7","libjpeg8-devel":"8.1.2-5.15.7","libturbojpeg0":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP1","name":"libjpeg62-turbo","purl":"pkg:rpm/suse/libjpeg62-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg62":"62.2.0-5.15.7","libjpeg62-devel":"62.2.0-5.15.7","libjpeg8":"8.1.2-5.15.7","libjpeg8-devel":"8.1.2-5.15.7","libturbojpeg0":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP2","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg62":"62.2.0-5.15.7","libjpeg62-devel":"62.2.0-5.15.7","libjpeg8":"8.1.2-5.15.7","libjpeg8-devel":"8.1.2-5.15.7","libturbojpeg0":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP2","name":"libjpeg62-turbo","purl":"pkg:rpm/suse/libjpeg62-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg8-32bit":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP1","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg8-32bit":"8.1.2-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP2","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg-turbo":"1.5.3-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP1","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjpeg-turbo":"1.5.3-5.15.7"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP2","name":"libjpeg-turbo","purl":"pkg:rpm/suse/libjpeg-turbo&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.5.3-5.15.7"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libjpeg-turbo fixes the following issues:\n\n- CVE-2020-13790: Fixed a heap-based buffer over-read via a malformed PPM input file (bsc#1172491).\n","id":"SUSE-SU-2020:2569-1","modified":"2020-09-08T12:59:16Z","published":"2020-09-08T12:59:16Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20202569-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1172491"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-13790"}],"related":["CVE-2020-13790"],"summary":"Security update for libjpeg-turbo","upstream":["CVE-2020-13790"]}