Vulnerability CVE-2024-9029


Published: 2024-09-27

Description:
A flaw was found in freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service.

 References:
https://bugzilla.redhat.com/show_bug.cgi?id=2313704
https://sourceforge.net/p/freeimage/bugs/351/

Copyright 2026, cxsecurity.com

 

Back to Top