Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-5139

Опубликовано: 07 авг. 2016
Источник: debian
EPSS Низкий

Описание

Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
openjpeg2fixed2.1.2-1package
chromium-browserfixed52.0.2743.116-1package
chromium-browserend-of-lifewheezypackage

Примечания

  • Fixed in Google with: https://pdfium.googlesource.com/pdfium.git/+/2f6d1480a1be2b1f82c94219c2d99e67d7e0660d

  • https://github.com/uclouvain/openjpeg/pull/819

EPSS

Процентиль: 79%
0.01279
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-5139

CVSS3: 7.6
ubuntu
больше 9 лет назад

Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

redhat логотип

CVE-2016-5139

CVSS3: 8.8
redhat
больше 9 лет назад

Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

nvd логотип

CVE-2016-5139

CVSS3: 7.6
nvd
больше 9 лет назад

Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

github логотип

GHSA-gmg5-8m74-xp62

CVSS3: 7.6
github
больше 3 лет назад

Multiple integer overflows in the opj_tcd_init_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

oracle-oval логотип

ELSA-2017-0559

oracle-oval
больше 8 лет назад

ELSA-2017-0559: openjpeg security update (MODERATE)

EPSS

Процентиль: 79%
0.01279
Низкий