CVE-2017-5114

🗓️ 27 Oct 2017 05:00:00Reported by ChromeType

Inappropriate use of partition alloc in PDFium in Google Chrome versions prior to 61.0.3163.79 for Linux, Windows, and Mac, and 61.0.3163.81 for Android, allowing remote memory corruption via crafted PDF file

Reporter	Title	Published	Views	Family All 57
ArchLinux	[ASA-201709-1] chromium: multiple issues	6 Sep 201700:00	–	archlinux
CVE	CVE-2017-5114	27 Oct 201705:00	–	cve
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian	[SECURITY] [DSA 3985-1] chromium-browser security update	28 Sep 201712:32	–	debian
Debian CVE	CVE-2017-5114	27 Oct 201705:00	–	debiancve
Tenable Nessus	Debian DSA-3985-1 : chromium-browser - security update	29 Sep 201700:00	–	nessus
Tenable Nessus	Fedora 27 : chromium (2017-109f8db088)	15 Jan 201800:00	–	nessus
Tenable Nessus	Fedora 27 : qt5-qtwebengine (2017-4f9bb0861b)	15 Jan 201800:00	–	nessus
Tenable Nessus	Fedora 25 : qt5-qtwebengine (2017-580f91f6b0)	27 Nov 201700:00	–	nessus
Tenable Nessus	Fedora 26 : qt5-qtwebengine (2017-9a7e562fca)	20 Nov 201700:00	–	nessus

[
  {
    "product": "Google Chrome prior to 61.0.3163.79 for Linux, Windows and Mac, and 61.0.3163.81 for Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 61.0.3163.79 for Linux, Windows and Mac, and 61.0.3163.81 for Android"
      }
    ]
  }
]

Source	Link
chromereleases	www.chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html
crbug	www.crbug.com/752829
securitytracker	www.securitytracker.com/id/1039291
debian	www.debian.org/security/2017/dsa-3985
securityfocus	www.securityfocus.com/bid/100610
access	www.access.redhat.com/errata/RHSA-2017:2676
security	www.security.gentoo.org/glsa/201709-15

30 Dec 2017 10:57Current

8.4High risk

Vulners AI Score8.4

EPSS0.00811