Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.
References
Link | Resource |
---|---|
http://www.zerodayinitiative.com/advisories/ZDI-16-197/ | Third Party Advisory VDB Entry |
https://pdfium.googlesource.com/pdfium/+/c145aeb2bf13ac408fc3e8233acca43d4251bbdc | Vendor Advisory |
http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_8.html | Vendor Advisory |
https://code.google.com/p/chromium/issues/detail?id=587227 | Vendor Advisory |
http://www.securityfocus.com/bid/84224 | Third Party Advisory VDB Entry |
http://www.debian.org/security/2016/dsa-3513 | Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00073.html | Third Party Advisory |
http://www.securitytracker.com/id/1035259 | Third Party Advisory VDB Entry |
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00066.html | Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00067.html | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2016-03-13 15:59
Updated : 2019-09-27 09:43
NVD link : CVE-2016-1645
Mitre link : CVE-2016-1645
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
- chrome
opensuse
- suse_linux_enterprise_server
- leap
- opensuse
debian
- debian_linux