SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

freeimage: Multiple vulnerabilities (CVE-2019-12211, CVE-2019-12212, CVE-2019-12213, CVE-2019-12214)

ID: oval:org.secpod.oval:def:1802062	Date: (C)2022-03-25 (M)2024-02-26
Class: PATCH	Family: unix

When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory function in PluginTIFF.cpp always returns 1, leading to stack exhaustion.

Platform:

Alpine Linux 3.11

Alpine Linux 3.12

Alpine Linux 3.13

Alpine Linux 3.14

Alpine Linux 3.15

Product:

freeimage

Reference:

10997