2 matches found
CVE-2019-12214
In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2kreadppmv3 function in j2k.c. The value of lNppm comes from the file read in, and the code does not consider that lNppm may be greater than the size of pheaderdata...
CVE-2019-12214
CVE-2019-12214 affects FreeImage 3.18.0 where an out-of-bounds access can occur due to mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value l_N_ppm is derived from the input file, and the code does not ensure it is within the bounds of p_header_data, enabling potential memory ...