FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

freeimage -- code execution vulnerability

Affected packages
freeimage < 3.16.0_4

Details

VuXML ID 5b1631dc-eafd-11e6-9ac1-a4badb2f4699
Discovery 2016-10-03
Entry 2017-02-04
Modified 2018-04-14

TALOS reports:

An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library.

References

CVE Name CVE-2016-5684
FreeBSD PR ports/216657
URL http://www.talosintelligence.com/reports/TALOS-2016-0189/