When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
Created freeimage tracking bugs for this issue:
Affects: epel-all [bug 1732248]
Affects: fedora-all [bug 1732246]
Created mingw-freeimage tracking bugs for this issue:
Affects: fedora-all [bug 1732247]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.