View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2013-6629 severity moderate: SUSE including 133 source package names (MozillaFirefox-140.2.0-160000.1.2, MozillaFirefox-31.1.0esr-1.20, …), 245 product×package rows across 47 product lines (HPE Helion OpenStack 8, SUSE Linux Enterprise Desktop 11 SP3, … (47 product lines)): Fixed 202, Known Not Affected 43.
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that follow Start Of Scan (SOS) JPEG markers, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted JPEG image.