CVE-2023-47995

Name
CVE-2023-47995
Description
Memory Allocation with Excessive Size Value discovered in BitmapAccess.cpp::FreeImage_AllocateBitmap in FreeImage 3.18.0 allows attackers to cause a denial of service.
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://freeimage.sourceforge.io/
cve@mitre.org https://github.com/thelastede/FreeImage-cve-poc/tree/master/CVE-2023-47995
cve@mitre.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K3ZNVRL5PCTMMA3ZBDKH5WH4RT4ST3HW/
cve@mitre.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VLDUDJOWZAKBQMQ7XYNJTRCFPOB56BOE/
cve@mitre.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EDK7DSADYUHJFNVSRGJHEFJGMWRGGDLM/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:freeimage_project:freeimage:3.18.0:*:*:*:*:*:*:* freeimage == None == 3.18.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
freeimage edge-community 3.18.0-r4 Taner Tas <taner76@gmail.com> possibly vulnerable
freeimage 3.19-community 3.18.0-r4 Taner Tas <taner76@gmail.com> possibly vulnerable
freeimage 3.20-community 3.18.0-r4 Taner Tas <taner76@gmail.com> possibly vulnerable