2 matches found
CVE-2015-3405
CVE-2015-3405 concerns ntp-keygen generating MD5 keys with insufficient entropy on big-endian systems, enabling an attacker to brute-force 93 possible keys and potentially spoof NTP. The IBM Power HMC bulletin lists affected products and versions: Power HMC V7.3.0.0, V7.9.0.0, V8.1.0.0, and V8.2....
CVE-2016-1645
CVE-2016-1645 is an out-of-bounds write issue in the pdfium library derived from OpenJPEG’s opj_j2k_update_image_data, used by Google Chrome’s PDF rendering path. Multiple connected advisories confirm the vulnerability in Chrome before 49.0.2623.87 and link it to a vulnerability class described a...