CVE-2015-6776 in Ubuntu

CVE-2015-6776

Priority

Description

The opj_dwt_decode_1* functions in dwt.c in OpenJPEG, as used in PDFium in
Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial
of service (out-of-bounds array access) or possibly have unspecified other
impact via crafted JPEG 2000 data that is mishandled during a discrete
wavelet transform.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6776
http://googlechromereleases.blogspot.com/2015/12/stable-channel-update.html

Package

Source: chromium-browser (LP Ubuntu Debian)

Upstream:	released (47.0.2526.73)
Ubuntu 14.04 LTS (Trusty Tahr):	released (47.0.2526.73-0ubuntu0.14.04.1.1106)
Ubuntu 16.04 LTS (Xenial Xerus):	released (47.0.2526.73-0ubuntu1.1218)

Package

Source: oxide-qt (LP Ubuntu Debian)

Upstream:	not-affected
Ubuntu 14.04 LTS (Trusty Tahr):	not-affected
Ubuntu 16.04 LTS (Xenial Xerus):	not-affected

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2019-01-14 22:18:35 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)