Описание
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 45.0.2454.85-0ubuntu1.1198 |
| bionic | released | 45.0.2454.85-0ubuntu1.1198 |
| devel | released | 45.0.2454.85-0ubuntu1.1198 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [45.0.2454.85-0ubuntu0.14.04.1.1097]] |
| precise | ignored | |
| precise/esm | DNE | precise was ignored |
| trusty | released | 45.0.2454.85-0ubuntu0.14.04.1.1097 |
| trusty/esm | DNE | trusty was released [45.0.2454.85-0ubuntu0.14.04.1.1097] |
| upstream | released | 45.0.2454.85 |
| vivid | released | 45.0.2454.85-0ubuntu0.15.04.1.1181 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| devel | DNE | |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | not-affected | code not present |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needs-triage |
| trusty | not-affected | code not present |
| trusty/esm | not-affected | code not present |
| upstream | not-affected | code not present |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| esm-infra/xenial | not-affected | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | not-affected | |
| trusty/esm | DNE | trusty was not-affected |
| upstream | not-affected |
Показывать по
Ссылки на источники
7.5 High
CVSS2
Связанные уязвимости
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_t ...
Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) by triggering a memory-allocation failure.
Уязвимость браузера Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
7.5 High
CVSS2