In FreeImage 3.18.0, an out-of-bounds access occurs because of mishandling of the OpenJPEG j2k_read_ppm_v3 function in j2k.c. The value of l_N_ppm comes from the file read in, and the code does not consider that l_N_ppm may be greater than the size of p_header_data. Reference: https://sourceforge.net/p/freeimage/discussion/36111/thread/e06734bed5/
Created freeimage tracking bugs for this issue: Affects: epel-all [bug 1732228] Affects: fedora-all [bug 1732226] Created mingw-freeimage tracking bugs for this issue: Affects: fedora-all [bug 1732227]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.