CVE-2015-1273
Published: 23 July 2015
Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid JPEG2000 data in a PDF document.
Notes
Author | Note |
---|---|
tyhicks | There are large changes between openjpeg trunk and the 1.5 and 1.3 branches that we shipped in Vivid and older. However, it looks like those code bases are also affected because I don't see similar sanity checks. As of 2015-07-24, I don't see a fix in the 1.5 branch. |
Priority
Status
Package | Release | Status |
---|---|---|
chromium-browser Launchpad, Ubuntu, Debian |
artful |
Released
(44.0.2403.89-0ubuntu1.1195)
|
bionic |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
cosmic |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
disco |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
eoan |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
focal |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
upstream |
Released
(44.0.2403.89)
|
|
utopic |
Ignored
(end of life, was needed)
|
|
wily |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
xenial |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
yakkety |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
zesty |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
vivid |
Released
(44.0.2403.89-0ubuntu0.15.04.1.1177)
|
|
impish |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
groovy |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
hirsute |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
jammy |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
kinetic |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
lunar |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
precise |
Ignored
|
|
trusty |
Released
(44.0.2403.89-0ubuntu0.14.04.1.1095)
|
|
mantic |
Released
(44.0.2403.89-0ubuntu1.1195)
|
|
Patches: upstream: https://pdfium.googlesource.com/pdfium/+/cddfde0cddbc8467e0d5fa04c30405ee257750fc |
||
oxide-qt Launchpad, Ubuntu, Debian |
upstream |
Not vulnerable
|
impish |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
jammy |
Does not exist
|
|
vivid |
Not vulnerable
|
|
kinetic |
Does not exist
|
|
lunar |
Does not exist
|
|
artful |
Not vulnerable
|
|
bionic |
Does not exist
|
|
cosmic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
(trusty was not-affected)
|
|
utopic |
Not vulnerable
|
|
wily |
Not vulnerable
|
|
xenial |
Not vulnerable
|
|
yakkety |
Not vulnerable
|
|
zesty |
Not vulnerable
|
|
mantic |
Does not exist
|
|
openjpeg Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
bionic |
Does not exist
|
|
cosmic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
impish |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
jammy |
Does not exist
|
|
xenial |
Deferred
(2015-07-24)
|
|
vivid |
Ignored
(end of life, was deferred)
|
|
kinetic |
Does not exist
|
|
lunar |
Does not exist
|
|
precise |
Ignored
(end of life)
|
|
trusty |
Deferred
(2015-07-24)
|
|
upstream |
Needed
|
|
wily |
Ignored
(end of life)
|
|
yakkety |
Ignored
(end of life)
|
|
zesty |
Does not exist
|
|
mantic |
Does not exist
|
|
Patches: upstream: https://github.com/uclouvain/openjpeg/commit/daed8cc9195555e101ab708a501af2dfe6d5e001 |