CVE-2024-9029

Name of the Vulnerable Software and Affected Versions: freeimage library (affected versions not specified)

Description: A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read iptc profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.