CVE-2021-40265
First published: Tue Aug 22 2023(Updated: )
A heap overflow bug exists FreeImage before 1.18.0 via ofLoad function in PluginJPEG.cpp.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Freeimage Project Freeimage | <1.18.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this heap overflow bug?
The vulnerability ID for this heap overflow bug is CVE-2021-40265.
What is the severity of CVE-2021-40265?
The severity of CVE-2021-40265 is high with a CVSS score of 8.8.
How does the heap overflow bug manifest in FreeImage?
The heap overflow bug manifests in FreeImage through the ofLoad function in PluginJPEG.cpp.
What versions of FreeImage are affected by this bug?
Versions of FreeImage before 1.18.0 are affected by this heap overflow bug.
How can I fix CVE-2021-40265?
To fix CVE-2021-40265, it is recommended to update FreeImage to version 1.18.0 or newer.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/event
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/freeimage project
- canonical/freeimage project freeimage