CVE-2024-28581

Name of the Vulnerable Software and Affected Versions FreeImage version 3.19.0

Description The issue allows a local attacker to execute arbitrary code via the assignPixel() function when reading images in TARGA format. This is a Buffer Overflow vulnerability.

Recommendations For FreeImage version 3.19.0, as a temporary workaround, consider disabling the assignPixel() function until a patch is available. Restrict access to image reading functionality in TARGA format to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.