An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. A specially crafted XMP file can cause an arbitrary memory overwrite resulting in code execution. An attacker can provide a malicious image to trigger this vulnerability.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libfreeimage-dev", "binary_version": "3.15.4-3ubuntu0.1" }, { "binary_name": "libfreeimage-dev-dbgsym", "binary_version": "3.15.4-3ubuntu0.1" }, { "binary_name": "libfreeimage3", "binary_version": "3.15.4-3ubuntu0.1" }, { "binary_name": "libfreeimage3-dbg", "binary_version": "3.15.4-3ubuntu0.1" }, { "binary_name": "libfreeimage3-dbgsym", "binary_version": "3.15.4-3ubuntu0.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libfreeimage-dev", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimage3", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimage3-dbg", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimage3-dbgsym", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimageplus-dev", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimageplus-doc", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimageplus3", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimageplus3-dbg", "binary_version": "3.17.0+ds1-2ubuntu0.1" }, { "binary_name": "libfreeimageplus3-dbgsym", "binary_version": "3.17.0+ds1-2ubuntu0.1" } ] }