CVE-2025-65803

Опубликовано: 10 дек. 2025

Источник: debian

Описание

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

Пакеты

Пакет	Статус	Релиз	Тип
freeimage	unfixed		package
freeimage	postponed	trixie	package
freeimage	postponed	bookworm	package

Примечания

https://gist.github.com/1mxml/cabd6d972557d9d992fe5f4f6ca1dd87
https://sourceforge.net/p/freeimage/bugs/390/

Связанные уязвимости

CVE-2025-65803

CVSS3: 6.5

ubuntu

около 2 месяцев назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

CVE-2025-65803

CVSS3: 6.5

nvd

около 2 месяцев назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

GHSA-hwvj-wq82-3x6r

CVSS3: 7.5

github

около 2 месяцев назад

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.