Lucene search
Gentoo FoundationMGASA-2024-0087HistoryMar 24, 2024 - 7:57 a.m.
Updated freeimage packages fix security vulnerabilities
2024-03-2407:57:19
Gentoo Foundation
advisories.mageia.org
24
freeimage
packages
security
vulnerabilities
buffer overflow
infinite loop
plugintiff
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
27.9%
Buffer Overflow vulnerability in FreeImage_AllocateBitmap. (CVE-2023-47995) Infinite loop exits in Load in PluginTIFF.cpp. (CVE-2023-47997)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | freeimage | < 3.18.0-10.1 | freeimage-3.18.0-10.1.mga9 |
Related
openvas
openvas
Fedora: Security Advisory for freeimage (FEDORA-2024-e6a35cd250)
2024-03-25 00:00:00
Mageia: Security Advisory (MGASA-2024-0087)
2024-04-05 00:00:00
Fedora: Security Advisory for freeimage (FEDORA-2024-c0b61ab46b)
2024-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: mingw-freeimage-3.19.0-0.20.svn1909.fc39
2024-03-19 01:10:55
[SECURITY] Fedora 40 Update: mingw-freeimage-3.19.0-0.20.svn1909.fc40
2024-03-23 00:50:49
[SECURITY] Fedora 39 Update: freeimage-3.19.0-0.23.svn1909.fc39
2024-03-19 01:10:55
nessus
nessus
Fedora 38 : freeimage / mingw-freeimage (2024-e6a35cd250)
2024-03-18 00:00:00
Fedora 39 : freeimage / mingw-freeimage (2024-c0b61ab46b)
2024-03-18 00:00:00
Fedora 40 : freeimage / mingw-freeimage (2024-c4d32d51c9)
2024-04-29 00:00:00
cve
cve
CVE-2023-47995
2024-01-09 23:15:09
CVE-2023-47997
2024-01-10 00:15:45
nvd
nvd
CVE-2023-47995
2024-01-09 23:15:09
CVE-2023-47997
2024-01-10 00:15:45
alpinelinux
alpinelinux
CVE-2023-47995
2024-01-09 23:15:09
CVE-2023-47997
2024-01-10 00:15:45
ubuntucve
ubuntucve
CVE-2023-47995
2024-01-09 00:00:00
CVE-2023-47997
2024-01-10 00:00:00
debiancve
debiancve
CVE-2023-47995
2024-01-09 23:15:09
CVE-2023-47997
2024-01-10 00:15:45
prion
prion
Design/Logic Flaw
2024-01-09 23:15:00
Denial of service
2024-01-10 00:15:00
cvelist
cvelist
CVE-2023-47995
2024-01-09 00:00:00
CVE-2023-47997
2024-01-09 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6.9
Confidence
Low
EPSS
0.001
Percentile
27.9%
Related for MGASA-2024-0087