Published: 13/03/2016 Updated: 07/11/2023

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome prior to 49.0.2623.87, allow remote malicious users to cause a denial of service (incorrect cast and out-of-bounds write) or possibly have unspecified other impact via crafted JPEG 2000 data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
debian debian linux 8.0
opensuse leap 42.1
opensuse opensuse 13.1
opensuse opensuse 13.2
opensuse suse linux enterprise server 12.0

Several vulnerabilities have been discovered in the chromium web browser CVE-2016-1643 cloudfuzzer discovered a type confusion issue in Blink/Webkit CVE-2016-1644 Atte Kettunen discovered a use-after-free issue in Blink/Webkit CVE-2016-1645 An out-of-bounds write issue was discovered in the pdfium library For the stable distributi ...

CWE-119 http://www.securitytracker.com/id/1035259 http://www.zerodayinitiative.com/advisories/ZDI-16-197/http://www.debian.org/security/2016/dsa-3513 http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00067.html http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_8.html https://code.google.com/p/chromium/issues/detail?id=587227 http://www.securityfocus.com/bid/84224 https://pdfium.googlesource.com/pdfium/+/c145aeb2bf13ac408fc3e8233acca43d4251bbdc http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00073.html http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00066.html https://nvd.nist.gov https://www.debian.org/security/./dsa-3513

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-1645

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect