Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-21428HistoryAug 22, 2023 - 7:16 p.m.
CVE-2020-21428
2023-08-2219:16:12
Debian Security Bug Tracker
security-tracker.debian.org
3
buffer overflow
freeimage 3.18.0
plugindds.cpp
remote attackers
arbitrary code
image file
unix
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.5%
Buffer Overflow vulnerability in function LoadRGB in PluginDDS.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | freeimage | < 3.18.0+ds2-9+deb12u1 | freeimage_3.18.0+ds2-9+deb12u1_all.deb |
| Debian | 11 | all | freeimage | < 3.18.0+ds2-6+deb11u1 | freeimage_3.18.0+ds2-6+deb11u1_all.deb |
| Debian | 999 | all | freeimage | < 3.18.0+ds2-10 | freeimage_3.18.0+ds2-10_all.deb |
| Debian | 13 | all | freeimage | < 3.18.0+ds2-10 | freeimage_3.18.0+ds2-10_all.deb |
Related
nvd
nvd
CVE-2020-21428
2023-08-22 19:16:12
alpinelinux
alpinelinux
CVE-2020-21428
2023-08-22 19:16:12
ubuntucve
ubuntucve
CVE-2020-21428
2023-08-22 00:00:00
cvelist
cvelist
CVE-2020-21428
2023-08-22 00:00:00
prion
prion
Buffer overflow
2023-08-22 19:16:00
cnvd
cnvd
FreeImage LoadRGB function buffer overflow vulnerability
2023-08-25 00:00:00
cve
cve
CVE-2020-21428
2023-08-22 19:16:12
osv
osv
freeimage - security update
2023-12-17 00:00:00
freeimage - security update
2023-11-24 00:00:00
freeimage vulnerabilities
2024-01-16 12:44:38
openvas
openvas
Debian: Security Advisory (DSA-5579-1)
2023-12-19 00:00:00
Debian: Security Advisory (DLA-3662-1)
2023-11-27 00:00:00
Fedora: Security Advisory for mingw-freeimage (FEDORA-2023-2840932fa8)
2023-09-16 00:00:00
debian
debian
[SECURITY] [DSA 5579-1] freeimage security update
2023-12-17 18:41:43
[SECURITY] [DLA 3662-1] freeimage security update
2023-11-25 21:36:10
nessus
nessus
Debian DLA-3662-1 : freeimage - LTS security update
2023-11-25 00:00:00
Debian DSA-5579-1 : freeimage - security update
2023-12-18 00:00:00
Fedora 39 : freeimage / mingw-freeimage (2023-2840932fa8)
2023-11-07 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: mingw-freeimage-3.19.0-0.16.svn1909.fc38
2023-09-06 01:20:19
[SECURITY] Fedora 38 Update: freeimage-3.19.0-0.19.svn1909.fc38
2023-09-06 01:20:18
[SECURITY] Fedora 39 Update: mingw-freeimage-3.19.0-0.16.svn1909.fc39
2023-09-15 19:03:37
ubuntu
ubuntu
FreeImage vulnerabilities
2024-01-16 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.5%
Related for DEBIANCVE:CVE-2020-21428