CVE-2025-65803

Опубликовано: 10 дек. 2025

Источник: debian

EPSS Низкий

Описание

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

Пакеты

Пакет	Статус	Релиз	Тип
freeimage	unfixed		package
freeimage	postponed	trixie	package
freeimage	postponed	bookworm	package
freeimage	end-of-life	bullseye	package

Примечания

https://gist.github.com/1mxml/cabd6d972557d9d992fe5f4f6ca1dd87
https://sourceforge.net/p/freeimage/bugs/390/

EPSS

Процентиль: 17%

0.00055

Низкий

Связанные уязвимости

CVE-2025-65803

CVSS3: 6.5

ubuntu

4 месяца назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

CVE-2025-65803

CVSS3: 6.5

nvd

4 месяца назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

GHSA-hwvj-wq82-3x6r

CVSS3: 7.5

github

4 месяца назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

EPSS

Процентиль: 17%

0.00055

Низкий