| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-12213 | 4.3 |
When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory function in PluginTIFF.cpp always returns 1, leading to stack exhaustion.
|
01-02-2023 - 20:21 | 20-05-2019 - 16:29 | |
| CVE-2019-12211 | 5.0 |
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
|
01-02-2023 - 19:52 | 20-05-2019 - 16:29 | |
| CVE-2019-12211 | 5.0 |
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
|
24-09-2020 - 17:15 | 20-05-2019 - 16:29 | |
| CVE-2019-12213 | 4.3 |
When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory function in PluginTIFF.cpp always returns 1, leading to stack exhaustion.
|
24-09-2020 - 17:15 | 20-05-2019 - 16:29 | |
| CVE-2019-12212 | 5.0 |
When FreeImage 3.18.0 reads a special JXR file, the StreamCalcIFDSize function of JXRMeta.c repeatedly calls itself due to improper processing of the file, eventually causing stack exhaustion. An attacker can achieve a remote denial of service attack
|
24-08-2020 - 17:37 | 20-05-2019 - 16:29 | |
| CVE-2019-12214 | 5.0 |
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value of l_N_ppm comes from the file read in, and the code does not consider that l_N_ppm may be greater than the size o
|
21-05-2019 - 13:14 | 20-05-2019 - 16:29 |