The af_get_page function in lib/afflib_pages.cpp in AFFLIB through 3.7.16 allows remote attackers to cause a denial of service via a corrupt AFF image that triggers an unexpected pagesize value.