Описание
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| freeimage | unfixed | package | ||
| freeimage | postponed | trixie | package | |
| freeimage | postponed | bookworm | package | |
| freeimage | no-dsa | bullseye | package | |
| freeimage | postponed | buster | package |
Примечания
https://sourceforge.net/p/freeimage/bugs/334/
Patch in Fedora (not upstream'ed): https://src.fedoraproject.org/rpms/freeimage/blob/f39/f/CVE-2021-40266.patch
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 2 лет назад
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.
CVSS3: 6.5
nvd
больше 2 лет назад
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.
CVSS3: 6.5
github
больше 2 лет назад
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.