Fedora 38: Update FEDORA-2024-e6a35cd250 Critical Buffer Overflow Fix
fedora
March 19, 2024
Add downstream fixes for CVE-2023-47995 and CVE-2023-47997.
Summary
MinGW Windows freeimage library.
Update Information:
Add downstream fixes for CVE-2023-47995 and CVE-2023-47997.
Topics Covered
Change Log
* Sun Mar 10 2024 Sandro Mani
References
[ 1 ] Bug #2257661 - CVE-2023-47995 freeimage: Buffer Overflow vulnerability in FreeImage_AllocateBitmap [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2257661
[ 2 ] Bug #2257665 - CVE-2023-47997 freeimage: infinite loop exits in Load in PluginTIFF.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2257665
[ 3 ] Bug #2257666 - CVE-2023-47995 mingw-freeimage: FreeImage: Buffer Overflow vulnerability in FreeImage_AllocateBitmap [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2257666
[ 4 ] Bug #2257670 - CVE-2023-47997 mingw-freeimage: FreeImage: infinite loop exits in Load in PluginTIFF.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2257670
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-e6a35cd250' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: mingw-freeimage
Product: Fedora 38
Version: 3.19.0
Release: 0.20.svn1909.fc38
Summary: MinGW Windows freeimage library
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!