Описание
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.17.0+ds1-5+deb9u1build0.18.04.1 |
| cosmic | ignored | end of life |
| devel | not-affected | 3.18.0+ds2-6ubuntu1 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 3.17.0+ds1-5+deb9u1build0.18.04.1 |
| esm-apps/focal | released | 3.18.0+ds2-1ubuntu3.1 |
| esm-apps/jammy | not-affected | 3.18.0+ds2-6ubuntu1 |
| esm-apps/xenial | released | 3.17.0+ds1-2ubuntu0.1+esm1 |
| esm-infra-legacy/trusty | released | 3.15.4-3ubuntu0.1+esm2 |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load ...
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
Уязвимость компонента PluginTIFF.cpp библиотеки для работы с графическими форматами FreeImages, связанная с выходом операции за допустимые границы буфера данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2
7.5 High
CVSS3