CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-40262
https://notcve.org/view.php?id=CVE-2021-40262
A stack exhaustion issue was discovered in FreeImage before 1.18.0 via the Validate function in PluginRAW.cpp. Se ha descubierto un problema de agotamiento de pila en FreeImage anterior a 1.18.0 a través de la función Validate en PluginRAW.cpp. • https://sourceforge.net/p/freeimage/bugs/338 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-40264
https://notcve.org/view.php?id=CVE-2021-40264
NULL pointer dereference vulnerability in FreeImage before 1.18.0 via the FreeImage_CloneTag function inFreeImageTag.cpp. Vulnerabilidad de desreferencia de puntero NULL en FreeImage antes de 1.18.0 a través de la función FreeImage_CloneTag en FreeImageTag.cpp. • https://sourceforge.net/p/freeimage/bugs/335 • CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-24295
https://notcve.org/view.php?id=CVE-2020-24295
Buffer Overflow vulnerability in PSDParser.cpp::ReadImageLine() in FreeImage 3.19.0 [r1859] allows remote attackers to ru narbitrary code via use of crafted psd file. La vulnerabilidad de desbordamiento de búfer en PSDParser.cpp::ReadImageLine() en FreeImage 3.19.0 [r1859] permite a atacantes remotos ru narbitrary código mediante el uso de archivo psd crafted. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HFRQ76ZDPSWT7OH6FJDLSFWBXVBE6JDN https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M6GKMK74POW3RU7F4HLUJE7XEFLQDO35 https://sourceforge.net/p/freeimage/discussion/36111/thread/afb98701eb • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-40266
https://notcve.org/view.php?id=CVE-2021-40266
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference. FreeImage antes de 1.18.0, la función ReadPalette en PluginTIFF.cpp es vulnerable a una desreferencia de puntero NULL. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HFRQ76ZDPSWT7OH6FJDLSFWBXVBE6JDN https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M6GKMK74POW3RU7F4HLUJE7XEFLQDO35 https://sourceforge.net/p/freeimage/bugs/334 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-33367
https://notcve.org/view.php?id=CVE-2021-33367
Buffer Overflow vulnerability in Freeimage v3.18.0 allows attacker to cause a denial of service via a crafted JXR file. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AXWMZOYJKXWOEEUV7ZKW4BX772F5P2HL https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WEG5FTVLVSO26TEEYKORM42WZ4LEHIJB https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXJ4QSLSK4HLH5ZDMDC42F7XLWLFADRD https://sourceforge.net/p/freeimage/discussion/36109/thread/1a4db03d58 • CWE-125: Out-of-bounds Read •