N/A

Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted PDF document, related to an "intra-object-overflow" issue, a different vulnerability than CVE-2015-1205.

N/A

N/A

Google Chrome PDFium 差一错误漏洞

Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。PDFium是其中的一个开源PDF渲染引擎。 Google Chrome 40.0.2214.85及之前版本中使用的PDFium中的fpdfapi/fpdf_font/font_int.h文件存在差一错误漏洞。远程攻击者可借助特制的PDF文档利用该漏洞造成拒绝服务（缓冲区溢出）。

N/A

N/A