5 matches found
Vulnerability Spotlight: Memory corruption in Google PDFium
Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Google Chrome's PDFium feature could be exploited by an adversary to corrupt memory and potentially execute remote code. Chrome is a popular, free web browser available on all operating systems. PDFium allows...
Google PDFium Out-of-bounds read (CVE-2018-16076)
An out-of-bounds and vulnerability exists in Google PDFium. The vulnerability is due to an error in parsing a malformed JBIG2 image stream in a PDF document. Successful exploitation could result in sensitive data exposure and memory corruption...
Vulnerability Spotlight: Google PDFium JBIG2 Image ComposeToOpt2WithRect Information Disclosure Vulnerability
Discovered by Aleksandar Nikolic of Cisco Talos Overview Cisco Talos is releasing details of a new vulnerability in Google PDFium's JBIG2 library. An exploitable out-of-bounds read on the heap vulnerability exists in the JBIG2-parsing code in Google Chrome, version 67.0.3396.99. A specially craft...
Google PDFium TIFF Image Flate Decoder Code Execution Vulnerability
Google PDFium is Google in the BSD 3-Clause license under the open source , based on Foxit technology , embedded in Google Chrome's PDF rendering engine . Google PDFium TIFF Image Flate decoder there are code execution vulnerabilities, attackers can exploit the vulnerabilities lead to memory...
Google Chrome < 48.0.2564.109 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 48.0.2564.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 201602stable-channel-update9 advisory. - The Developer Tools aka DevTools subsystem in Google Chrome before 48.0.2564.109 does n...