PT-2015-3977 · Google+4 · Google Chrome+5

Publicado

2015-01-21

Atualizado

2024-06-15

CVE-2014-7945

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions OpenJPEG versions prior to r2908 PDFium in Google Chrome versions prior to 40.0.2214.91

Description The issue allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to files j2k.c, jp2.c, and t2.c.

Recommendations For OpenJPEG versions prior to r2908, update to version r2908 or later. For PDFium in Google Chrome versions prior to 40.0.2214.91, update to version 40.0.2214.91 or later.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

ALT-PU-2015-1098

CVE-2014-7945

OPENSUSE-SU-2015_0441-1

OPENSUSE-SU-2024:10171-1

OPENSUSE-SU-2024:12948-1

RHSA-2015:0093

RHSA-2015_0093

Produtos afetados

Alt Linux

Google Chrome

Openjpeg

Pdfium

Red Hat

Suse

PT-2015-3977 · Google+4 · Google Chrome+5

CVE-2014-7945

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2466