Freeimage Project

freeimage_project

53 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Freeimage

freeimage

53 CVEs

CVEs (53)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-70968 1Freeimage Project 1Freeimage Jan 23, 2026 Jan 14, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().
CVE-2025-65803 1Freeimage Project 1Freeimage Dec 17, 2025 Dec 10, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.
CVE-2024-9029 1Freeimage Project 1Freeimage Aug 8, 2025 Sep 27, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not b...Show more A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service.Show less
CVE-2024-31570 1Freeimage Project 1Freeimage Sep 25, 2024 Sep 19, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.
CVE-2024-28584 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 3.3 LOW· v3 N/A· v2 Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format.
CVE-2024-28583 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.
CVE-2024-28582 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.
CVE-2024-28581 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the _assignPixel<>() function when reading images in TARGA format.
CVE-2024-28580 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the ReadData() function when reading images in RAS format.
CVE-2024-28579 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_Unload() function when reading images in HDR format.
CVE-2024-28578 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Load() function when reading images in RAS format.
CVE-2024-28577 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile_raw() function when reading images in JPEG format...Show more Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile_raw() function when reading images in JPEG format.Show less
CVE-2024-28576 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_tcp_destroy() function when reading images in J2K format.
CVE-2024-28575 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_read_mct() function when reading images in J2K format.
CVE-2024-28574 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K for...Show more Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.Show less
CVE-2024-28573 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile() function when reading images in JPEG format.
CVE-2024-28572 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_SetTagValue() function when reading images in JPEG format.
CVE-2024-28571 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG format.
CVE-2024-28570 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the processMakerNote() function when reading images in JPEG format.
CVE-2024-28569 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::Xdr::read() function when reading images in EXR format.

12 3 Next