Lucene search

K

ChromeCVELIST:CVE-2016-5140

HistoryAug 07, 2016 - 7:00 p.m.

CVE-2016-5140

2016-08-0719:00:00

Chrome

www.cve.org

4

AI Score

9.8

Confidence

High

EPSS

0.021

Percentile

89.2%

Heap-based buffer overflow in the opj_j2k_read_SQcd_SQcc function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JPEG 2000 data.

References

googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00005.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00006.html

rhn.redhat.com/errata/RHSA-2016-1580.html

www.debian.org/security/2016/dsa-3645

www.securityfocus.com/bid/92276

www.securitytracker.com/id/1036547

codereview.chromium.org/2071773002

crbug.com/619405

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4KMX62M7UNRLWO4FEQ6YIMPMTKXXJV6A/

security.gentoo.org/glsa/201610-09

AI Score

9.8

Confidence

High

EPSS

0.021

Percentile

89.2%

Related for CVELIST:CVE-2016-5140

cve1 ubuntucve1 debiancve1 redhatcve1 nvd1 prion1 nessus8 openvas8 debian2 kaspersky1 fedora1 suse2 freebsd1 osv1 mageia1 redhat1 archlinux1 chrome1 gentoo1