CVE-2024-28583

Опубликовано: 20 мар. 2024

Источник: debian

EPSS Низкий

Описание

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.

Пакеты

Пакет	Статус	Релиз	Тип
freeimage	unfixed		package
freeimage	postponed	trixie	package
freeimage	postponed	bookworm	package
freeimage	no-dsa	bullseye	package

Примечания

https://github.com/Ruanxingzhi/vul-report/tree/master/freeimage-r1909
https://sourceforge.net/p/freeimage/bugs/384/

EPSS

Процентиль: 34%

0.00137

Низкий

Связанные уязвимости

CVE-2024-28583

CVSS3: 7.8

ubuntu

почти 2 года назад

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.

CVE-2024-28583

CVSS3: 7.8

nvd

почти 2 года назад

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.

GHSA-26p4-rg6r-f676

CVSS3: 7.8

github

почти 2 года назад

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.

EPSS

Процентиль: 34%

0.00137

Низкий