Bug ID 1228883
Summary VUL-0: CVE-2024-28572: freeimage: buffer overflow in FreeImage_SetTagValue() function when reading images in JPEG format
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.6
Hardware Other
URL https://smash.suse.de/issue/398663/
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee jengelh@inai.de
Reporter smash_bz@suse.de
QA Contact security-team@suse.de
CC stoyan.manolov@suse.com
Target Milestone ---
Found By Security Response Team
Blocker ---

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows
a local attacker to cause a denial of service (DoS) via the
FreeImage_SetTagValue() function when reading images in JPEG format.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-28572
https://bugzilla.redhat.com/show_bug.cgi?id=2270971
https://github.com/Ruanxingzhi/vul-report/tree/master/freeimage-r1909
https://www.cve.org/CVERecord?id=CVE-2024-28572


You are receiving this mail because: