Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1645

Опубликовано: 13 мар. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3
CVSS3: 8.8

Описание

Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.

РелизСтатусПримечание
devel

released

49.0.2623.87-0ubuntu1.1232
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112]]
precise

ignored

trusty

released

49.0.2623.87-0ubuntu0.14.04.1.1112
trusty/esm

DNE

trusty was released [49.0.2623.87-0ubuntu0.14.04.1.1112]
upstream

released

49.0.2623.87
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

49.0.2623.87-0ubuntu0.15.10.1.1222

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
precise

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

vivid/stable-phone-overlay

not-affected

vivid/ubuntu-core

DNE

wily

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 84%
0.02189
Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1645

redhat
почти 10 лет назад

Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.

nvd логотип

CVE-2016-1645

CVSS3: 8.8
nvd
почти 10 лет назад

Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.

debian логотип

CVE-2016-1645

CVSS3: 8.8
debian
почти 10 лет назад

Multiple integer signedness errors in the opj_j2k_update_image_data fu ...

github логотип

GHSA-gp2j-hgg9-c57v

CVSS3: 8.8
github
больше 3 лет назад

Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.

fstec логотип

BDU:2016-00768

fstec
почти 10 лет назад

Уязвимости браузера Google Chrome, позволяющие нарушителю вызвать отказ в обслуживании или оказать другое воздействие

EPSS

Процентиль: 84%
0.02189
Низкий

9.3 Critical

CVSS2

8.8 High

CVSS3