Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-1359

Опубликовано: 27 янв. 2015
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8

Описание

Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted PDF document, related to an "intra-object-overflow" issue, a different vulnerability than CVE-2015-1205.

РелизСтатусПримечание
devel

released

40.0.2214.94-0ubuntu1.1120
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [40.0.2214.94-0ubuntu0.14.04.1.1068]]
lucid

ignored

end of life
precise

ignored

trusty

released

40.0.2214.94-0ubuntu0.14.04.1.1068
trusty/esm

DNE

trusty was released [40.0.2214.94-0ubuntu0.14.04.1.1068]
upstream

released

40.0.2214.91
utopic

released

40.0.2214.94-0ubuntu0.14.10.1.1110
vivid

released

40.0.2214.94-0ubuntu1.1120
wily

released

40.0.2214.94-0ubuntu1.1120

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
lucid

DNE

precise

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

utopic

not-affected

vivid

not-affected

wily

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 74%
0.00849
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2015-1359

nvd
около 11 лет назад

Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted PDF document, related to an "intra-object-overflow" issue, a different vulnerability than CVE-2015-1205.

debian логотип

CVE-2015-1359

debian
около 11 лет назад

Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, ...

github логотип

GHSA-84hc-7w5w-q3hv

github
больше 3 лет назад

Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted PDF document, related to an "intra-object-overflow" issue, a different vulnerability than CVE-2015-1205.

EPSS

Процентиль: 74%
0.00849
Низкий

6.8 Medium

CVSS2