Google PDFium JBIG2 image ComposeToOpt2WithRect information disclosure vulnerability

Summary An exploitable out-of-bounds read on the heap vulnerability exists in the JBIG2 parsing code of Google Chrome version 67.0.3396.99. A specially crafted PDF document can trigger an out-of-bounds read, which can possibly lead to an information leak that could be used as part of an exploit. ...

CVE-2015-1279

Integer overflow in the CJBig2Image::expand function in fxcodec/jbig2/JBig2Image.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via large height and stride value...

CVE-2015-1279

Integer overflow in the CJBig2Image::expand function in fxcodec/jbig2/JBig2Image.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via large height and stride value...

CVE-2015-1279

CVE-2015-1279 : Integer overflow in CJBig2_Image::expand within PDFium (fxcodec/jbig2/JBig2_Image.cpp) used by Google Chrome before 44.0.2403.89 leads to a heap-based buffer overflow when processing large height/stride values. Impact described as remote denial of service (and unspecified other im...