Package : freeimage
Version : 3.15.1-1.1+deb7u1
CVE ID : CVE-2016-5684
Debian Bug : #839827
It was discovered that there was an out-of-bounds write vulnerability in the
XMP image handling functionality in freeimage, a support library for various
graphics image formats. A specially crafted XMP file can cause an arbitrary
memory overwrite resulting in code execution.
For Debian 7 "Wheezy", this issue has been fixed in freeimage version
3.15.1-1.1+deb7u1.
We recommend that you upgrade your freeimage packages.
Regards,
,''`.
: :' : Chris Lamb
`. `'` [email protected] / chris-lamb.co.uk
`-
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | all | freeimage | < 3.15.1-1.1+deb7u1 | freeimage_3.15.1-1.1+deb7u1_all.deb |