6.4 Medium
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
77.5%
Double free vulnerability in the j2k_read_ppm_v3 function in OpenJPEG before r2997, as used in PDFium in Google Chrome, allows remote attackers to cause a denial of service (process crash) via a crafted PDF.
bugs.chromium.org/p/chromium/issues/detail?id=430891
bugs.chromium.org/p/chromium/issues/detail?id=457493
lists.debian.org/debian-lts-announce/2018/07/msg00025.html