Endpoint Vulnerability

JPEG information leak

Description

Google security researcher Michal Zalewski reported issues with JPEG format image processing with Start Of Scan (SOS) and Define Huffman Table (DHT) markers in the libjpeg library. This could allow for the possible reading of arbitrary memory content as well as cross-domain image theft.

Affected Products

Firefox,Firefox ESR

References

CVE-2013-6629,