Fluid Attacks Database

Description

Buffer Overflow vulnerability in FreeImage_Load function in FreeImage Library 3.19.0(r1828) allows attackers to cuase a denial of service via crafted PFM file.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	freeimage	=3.18.0+ds2-6 \|\| >=0 <3.18.0+ds2-6+deb11u1	3.18.0+ds2-6+deb11u1
debian 12	freeimage	=3.18.0+ds2-9 \|\| >=0 <3.18.0+ds2-9+deb12u1	3.18.0+ds2-9+deb12u1
debian 13	freeimage	>=0 <3.18.0+ds2-10	3.18.0+ds2-10
debian 14	freeimage	>=0 <3.18.0+ds2-10	3.18.0+ds2-10

Aliases

1. CVE-2020-225242. NVD-2020-225243. OSV-DEBIAN-2020-225244. OSV-2020-225245. SECURITY-TRACKER-CVE-2020-22524

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.