CVE-2016-5152 — Integer Overflow or Wraparound in Google Chrome

CWE-190 — Integer Overflow or Wraparound7 documents7 sources

Severity

8.8HIGHNVD

EPSS

1.0%

top 22.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

THE Openjpeg Project Openjpeg2 Google Chrome Opensuse Leap

Timeline

PublishedSep 11

Latest updateMay 14

Description

Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted JPEG 2000 data.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

▶Debianthe_openjpeg_project/openjpeg2< 2.1.2-1.2+3

▶NVDgoogle/chrome52.0.2743.116

▶NVDopensuse/leap42.1

🔴Vulnerability Details

GHSA

GHSA-6465-qf4g-vrf7: Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd↗2022-05-14

▶

OSV

CVE-2016-5152: Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd↗2016-09-11

▶

CVEList

CVE-2016-5152: Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd↗2016-09-11

▶

📋Vendor Advisories

Red Hat

chromium-browser: heap overflow in pdfium↗2016-08-31

▶

Debian

CVE-2016-5152: openjpeg2 - Integer overflow in the opj_tcd_get_decoded_tile_size function in tcd.c in OpenJ...↗2016

▶

💬Community

Bugzilla

CVE-2016-5152 chromium-browser: heap overflow in pdfium↗2016-09-01

▶