An integer overflow vulnerability in LoadPixelDataRLE4 function in PluginBMP.cpp in Freeimage 3.18.0 allows attackers to obtain sensitive information, cause a denial of service and/or run arbitrary code. https://github.com/thelastede/FreeImage-cve-poc/tree/master/CVE-2023-47994
Created freeimage tracking bugs for this issue: Affects: epel-all [bug 2257658] Affects: fedora-all [bug 2257662] Created mingw-freeimage tracking bugs for this issue: Affects: fedora-all [bug 2257669]