CVE-2015-1279

2015-07-23 02:59:08 2018-10-30 17:27:35

Integer overflow in the CJBig2_Image::expand function in fxcodec/jbig2/JBig2_Image.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via large height and stride values.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Redhat Enterprise linux server supplementary eus 6.7z (not an official CPE) Red Hat Enterprise Linux Desktop Supplementary 6.0 (v. 6) Red Hat Enterprise Linux Server Supplementary 6.0 (v. 6) Opensuse Opensuse 13.2 (not an official CPE) Debian Linux 8.0 (Jessie) Opensuse Opensuse 13.1 (not an official CPE) Red Hat Enterprise Linux Workstation Supplementary 6.0 (v. 6)

Google Chrome 43.0.2357.134

Redhat - Enterprise linux server supplementary eus Redhat - Enterprise linux desktop supplementary Redhat - Enterprise linux server supplementary Opensuse - Opensuse Debian - Debian linux Redhat - Enterprise linux workstation supplementary Google - Chrome

Advisory	Patch	Confirmed	Link
			https://codereview.chromium.org/1237723002
			https://codereview.chromium.org/1241493002
			https://code.google.com/p/chromium/issues/detail?id=4839...
			1033031
			75973
			DSA-3315
			openSUSE-SU-2015:1287
			RHSA-2015:1499
			GLSA-201603-09
			http://googlechromereleases.blogspot.com/2015/07/stable-...

CVE-2015-1279

2015-07-23 02:59:08 2018-10-30 17:27:35

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)