GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Jul 03, 2021 3:26 am Post subject: [ GLSA 202107-02 ] FreeImage |
 |
|
Gentoo Linux Security Advisory
Title: FreeImage: Multiple vulnerabilities (GLSA 202107-02)
Severity: low
Exploitable: local, remote
Date: 2021-07-03
Bug(s): #701850
ID: 202107-02
Synopsis
Multiple vulnerabilities have been found in FreeImage, the worst of
which could result in a Denial of Service condition.
Background
FreeImage is an Open Source library project for developers who would
like to support popular graphics image formats like PNG, BMP, JPEG, TIFF
and others as needed by today’s multimedia applications.
Affected Packages
Package: media-libs/freeimage
Vulnerable: < 3.18.0-r2
Unaffected: >= 3.18.0-r2
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in FreeImage. Please
review the CVE identifiers referenced below for details.
Impact
A remote attacker, by enticing a user to process a specially crafted
image file, could possibly cause a Denial of Service condition or other
unspecified impact.
Workaround
There is no known workaround at this time.
Resolution
All FreeImage users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/freeimage-3.18.0-r2"
|
References
CVE-2019-12211
CVE-2019-12213 |
|
News & Announcements
