A vulnerability was found in libjpeg-turbo, where a fixed signed integer overflow and subsequent segfault that occurred when attempting to decompress images with more than 715827882 pixels using the 64-bit C version of TJBench. References: https://bugs.gentoo.org/727910
Created libjpeg-turbo tracking bugs for this issue: Affects: fedora-all [bug 1850478]
*** Bug 1850474 has been marked as a duplicate of this bug. ***
Upstream bug: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/388 Upstream commit: https://github.com/libjpeg-turbo/libjpeg-turbo/commit/c30b1e72dac76343ef9029833d1561de07d29bada
This bug represents the second part of the fix committed for CVE-2019-2201
*** This bug has been marked as a duplicate of bug 1770982 ***