PT-2016-6278 · Opera+6 · Opera+7
Gogil
·
Publicado
2016-08-31
·
Atualizado
2024-06-15
·
CVE-2016-5158
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
OpenJPEG versions prior to 53.0.2785.89
Google Chrome versions prior to 53.0.2785.89 on Windows and OS X
Google Chrome versions prior to 53.0.2785.92 on Linux
Description
The issue is caused by multiple integer overflows in the
opj tcd init tile function in tcd.c in OpenJPEG, which is used in PDFium in Google Chrome and Opera. This allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.Recommendations
For OpenJPEG versions prior to 53.0.2785.89, update to version 53.0.2785.89 or later to resolve the issue.
For Google Chrome versions prior to 53.0.2785.89 on Windows and OS X, update to version 53.0.2785.89 or later to resolve the issue.
For Google Chrome versions prior to 53.0.2785.92 on Linux, update to version 53.0.2785.92 or later to resolve the issue.
As a temporary workaround, consider disabling the use of JPEG 2000 data in affected applications until a patch is available.
Correção
DoS
Integer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Centos
Google Chrome
Openjpeg
Opera
Pdfium
Red Hat
Suse