Multiple integer overflows in the opjtcdinit_tile function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 52.0.2743.116, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "chromium-browser", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-browser-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-browser-l10n", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-chromedriver", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-chromedriver-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-codecs-ffmpeg", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-codecs-ffmpeg-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-codecs-ffmpeg-extra", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" }, { "binary_name": "chromium-codecs-ffmpeg-extra-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.14.04.1.1134" } ] }
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "chromium-browser", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-browser-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-browser-l10n", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-chromedriver", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-chromedriver-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-codecs-ffmpeg", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-codecs-ffmpeg-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-codecs-ffmpeg-extra", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" }, { "binary_name": "chromium-codecs-ffmpeg-extra-dbgsym", "binary_version": "52.0.2743.116-0ubuntu0.16.04.1.1250" } ] }
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "libopenjp2-7", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-7-dbg", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-7-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-7-dev", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-7-dev-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-tools", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp2-tools-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp3d-tools", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp3d-tools-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp3d7", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjp3d7-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip-dec-server", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip-dec-server-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip-server", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip-server-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip-viewer", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip7", "binary_version": "2.1.2-1.1+deb9u2build0.1" }, { "binary_name": "libopenjpip7-dbgsym", "binary_version": "2.1.2-1.1+deb9u2build0.1" } ] }