{"id":"UBUNTU-CVE-2016-5684","details":"An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. A specially crafted XMP file can cause an arbitrary memory overwrite resulting in code execution. An attacker can provide a malicious image to trigger this vulnerability.","modified":"2026-04-22T10:53:20.143732Z","published":"2017-01-06T00:00:00Z","related":["USN-3925-1"],"upstream":["CVE-2016-5684"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2016-5684"},{"type":"REPORT","url":"http://www.talosintelligence.com/reports/TALOS-2016-0189/"},{"type":"REPORT","url":"http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginXPM.cpp?r1=1.17&r2=1.18"},{"type":"REPORT","url":"http://freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginXPM.cpp?r1=1.18&r2=1.19"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-3925-1"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2016-5684"}],"affected":[{"package":{"name":"freeimage","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/freeimage@3.15.4-3ubuntu0.1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.15.4-3ubuntu0.1"}]}],"versions":["3.15.1-2build1","3.15.1-2build2","3.15.4-2","3.15.4-3"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"libfreeimage3","binary_version":"3.15.4-3ubuntu0.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2016/UBUNTU-CVE-2016-5684.json"}},{"package":{"name":"freeimage","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/freeimage@3.17.0+ds1-2ubuntu0.1?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.17.0+ds1-2ubuntu0.1"}]}],"versions":["3.15.4-4.1build1","3.15.4-6","3.17.0+ds1-1.1","3.17.0+ds1-2"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"libfreeimage3","binary_version":"3.17.0+ds1-2ubuntu0.1"},{"binary_name":"libfreeimageplus3","binary_version":"3.17.0+ds1-2ubuntu0.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2016/UBUNTU-CVE-2016-5684.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}