Vulnerability in Alien::FreeImage Affects Perl Applications
CVE-2022-4988

Currently unrated

Key Information:

Vendor

Kmx

Status
Alien::freeimage
Vendor
CVE Published:
11 May 2026

What is CVE-2022-4988?

Alien::FreeImage version 1.001 for Perl is impacted by vulnerabilities due to its inclusion of the outdated FreeImage library (version 3.17.0). This library, last updated in 2017, contains multiple known vulnerabilities, including those documented under CVE-2015-0852 and CVE-2025-65803. The FreeImage library also embeds additional image processing libraries which similarly have known vulnerabilities, posing potential security risks to applications utilizing Alien::FreeImage.

Affected Version(s)

Alien::FreeImage 0 <= 1.001

References

https://freeimage.sourceforge.io/
https://metacpan.org/release/KMX/Alien-FreeImage-1.001/so...
https://nvd.nist.gov/vuln/detail/CVE-2015-0852
vendor-advisory

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.