CVE-2016-5159

EUVD-2016-6110
Multiple integer overflows in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during opj_aligned_malloc calls in dwt.c and t1.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
opensuseleap
42.1
googlechrome
𝑥
≤ 52.0.2743.116
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openjpeg2
bookworm
2.5.0-2
fixed
bullseye
2.4.0-3
fixed
sid
2.5.0-2
fixed
trixie
2.5.0-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
chromium-browser
artful
Fixed 53.0.2785.143-0ubuntu1.1307
released
bionic
Fixed 53.0.2785.143-0ubuntu1.1307
released
cosmic
Fixed 53.0.2785.143-0ubuntu1.1307
released
disco
Fixed 53.0.2785.143-0ubuntu1.1307
released
eoan
Fixed 53.0.2785.143-0ubuntu1.1307
released
precise
ignored
trusty
Fixed 53.0.2785.143-0ubuntu0.14.04.1.1142
released
xenial
Fixed 53.0.2785.143-0ubuntu0.16.04.1.1254
released
yakkety
Fixed 53.0.2785.143-0ubuntu1.1307
released
zesty
Fixed 53.0.2785.143-0ubuntu1.1307
released
openjpeg
artful
dne
bionic
dne
cosmic
dne
disco
dne
eoan
dne
precise
ignored
trusty
not-affected
xenial
not-affected
yakkety
ignored
zesty
dne
openjpeg2
artful
ignored
bionic
not-affected
cosmic
not-affected
disco
not-affected
eoan
not-affected
precise
dne
trusty
dne
xenial
Fixed 2.1.2-1.1+deb9u2build0.1
released
yakkety
ignored
zesty
ignored
oxide-qt
artful
not-affected
bionic
dne
cosmic
dne
disco
dne
eoan
dne
precise
dne
trusty
dne
xenial
not-affected
yakkety
not-affected
zesty
not-affected
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html
http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html
http://rhn.redhat.com/errata/RHSA-2016-1854.html
http://rhn.redhat.com/errata/RHSA-2017-0559.html
http://rhn.redhat.com/errata/RHSA-2017-0838.html
http://www.debian.org/security/2016/dsa-3660
http://www.debian.org/security/2017/dsa-3768
http://www.securityfocus.com/bid/92717
http://www.securitytracker.com/id/1036729
https://codereview.chromium.org/2218783002/
https://crbug.com/628304
https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html
https://security.gentoo.org/glsa/201610-09
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00008.html
http://lists.opensuse.org/opensuse-updates/2016-09/msg00073.html
http://rhn.redhat.com/errata/RHSA-2016-1854.html
http://rhn.redhat.com/errata/RHSA-2017-0559.html
http://rhn.redhat.com/errata/RHSA-2017-0838.html
http://www.debian.org/security/2016/dsa-3660
http://www.debian.org/security/2017/dsa-3768
http://www.securityfocus.com/bid/92717
http://www.securitytracker.com/id/1036729
https://codereview.chromium.org/2218783002/
https://crbug.com/628304
https://googlechromereleases.blogspot.com/2016/08/stable-channel-update-for-desktop_31.html
https://security.gentoo.org/glsa/201610-09