Buffer Overflow Vulnerability in FreeImage Open Source Library
CVE-2024-28574
Currently unrated
What is CVE-2024-28574?
A buffer overflow vulnerability has been identified in the open-source FreeImage library, specifically in version 3.19.0 [r1909]. This flaw allows a local attacker to exploit the opj_j2k_copy_default_tcp_and_create_tcd() function while processing images in J2K format. Consequently, this can lead to a denial of service (DoS), disrupting normal operations and access to the application. It is crucial for users of this library to apply necessary mitigations and updates to safeguard against potential exploitation.