CVE-2024-28577: Null Pointer Dereference in jpeg_read_exif_profile_raw()

Brought to you by: drolon, noescom

#378 CVE-2024-28577: Null Pointer Dereference in jpeg_read_exif_profile_raw()

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2024-10-07

Created: 2024-10-07

Creator: Santiago R.R.

Private: No

Null Pointer Dereference vulnerability in open source FreeImage
v.3.19.0 [r1909] allows a local attacker to cause a denial of service
(DoS) via the jpeg_read_exif_profile_raw() function when reading
images in JPEG format.

The aim of this ticket is to forward upstream the vulnerabilities published at
https://github.com/Ruanxingzhi/vul-report/tree/master/freeimage-r1909.
Please see there for more details.

Commit: [r1909]

CVE-2024-28577: Null Pointer Dereference in jpeg_read_exif_profile_raw()

Group

Searches

Help

#378 CVE-2024-28577: Null Pointer Dereference in jpeg_read_exif_profile_raw()

Related

Discussion