Lucene search

K
ubuntucveUbuntu.comUB:CVE-2015-6776
HistoryDec 06, 2015 - 12:00 a.m.

CVE-2015-6776

2015-12-0600:00:00
ubuntu.com
ubuntu.com
5

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.2%

The opj_dwt_decode_1* functions in dwt.c in OpenJPEG, as used in PDFium in
Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial
of service (out-of-bounds array access) or possibly have unspecified other
impact via crafted JPEG 2000 data that is mishandled during a discrete
wavelet transform.

OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchchromium-browser< 47.0.2526.73-0ubuntu1.1218UNKNOWN
ubuntu15.04noarchchromium-browser< 47.0.2526.73-0ubuntu0.15.04.1.1190UNKNOWN
ubuntu15.10noarchchromium-browser< 47.0.2526.73-0ubuntu0.15.10.1.1215UNKNOWN

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.2%