CVE-2016-5183

Опубликовано: 18 дек. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

A heap use after free in PDFium in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android allows a remote attacker to potentially exploit heap corruption via crafted PDF files.

Релиз	Статус	Примечание
devel	released	55.0.2883.87-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]]
precise	ignored
trusty	released	58.0.3029.81-0ubuntu0.14.04.1172
trusty/esm	DNE	trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]
upstream	released	54.0.2840.59
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	55.0.2883.87-0ubuntu0.16.04.1263
yakkety	released	55.0.2883.87-0ubuntu0.16.10.1328

Показывать по

Релиз	Статус	Примечание
devel	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected]
esm-infra/xenial	not-affected
precise	DNE
trusty	not-affected
trusty/esm	DNE	trusty was not-affected
upstream	not-affected
vivid/stable-phone-overlay	not-affected
vivid/ubuntu-core	DNE
xenial	not-affected

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2016-5183

EPSS

Процентиль: 75%

0.00858

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2016-5183

CVSS3: 8.8

redhat

больше 9 лет назад

CVE-2016-5183

CVSS3: 8.8

nvd

около 9 лет назад

CVE-2016-5183

CVSS3: 8.8

debian

около 9 лет назад

A heap use after free in PDFium in Google Chrome prior to 54.0.2840.59 ...

GHSA-mr78-86rh-644v

CVSS3: 8.8

github

больше 3 лет назад

EPSS

Процентиль: 75%

0.00858

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2016-5183

Описание

Пакет chromium-browser

Пакет oxide-qt

Ссылки на источники

Связанные уязвимости