CVE-2015-0852

EPSS 2.2%

freeimage - security update

Published: 9/29/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-0852

Description

Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service (heap memory corruption) via vectors related to the height and width of a window.

Affected packages (3)

Debian/freeimagefrom 0, < 3.15.4-5
Debian/freeimagefrom 0, < 3.10.0-4+deb6u1
Debian/freeimagefrom 0, < 3.15.1-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-0852