Описание
An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| freeimage | unfixed | package | ||
| freeimage | postponed | trixie | package | |
| freeimage | postponed | bookworm | package | |
| freeimage | postponed | bullseye | package | |
| freeimage | postponed | buster | package |
Примечания
https://github.com/thelastede/FreeImage-cve-poc/tree/master/CVE-2023-47996
EPSS
Процентиль: 24%
0.00079
Низкий
Связанные уязвимости
CVSS3: 6.5
ubuntu
около 2 лет назад
An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service.
CVSS3: 6.5
nvd
около 2 лет назад
An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service.
CVSS3: 6.5
github
около 2 лет назад
An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service.
EPSS
Процентиль: 24%
0.00079
Низкий