Описание
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value of l_N_ppm comes from the file read in, and the code does not consider that l_N_ppm may be greater than the size of p_header_data.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was deferred |
| cosmic | ignored | end of life |
| devel | deferred | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | deferred | |
| esm-apps/focal | deferred | |
| esm-apps/jammy | deferred | |
| esm-apps/noble | deferred | |
| esm-apps/xenial | deferred |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value of l_N_ppm comes from the file read in, and the code does not consider that l_N_ppm may be greater than the size of p_header_data.
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishand ...
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value of l_N_ppm comes from the file read in, and the code does not consider that l_N_ppm may be greater than the size of p_header_data.
EPSS
5 Medium
CVSS2
7.5 High
CVSS3