Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420_to_rgb and sycc422_to_rgb functions, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via crafted JPEG 2000 data in a PDF document.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome PDFium 安全漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。PDFium是其中的一个开源PDF渲染引擎。 Google Chrome 50.0.2661.75之前版本中使用的PDFium中的fxcodec/codec/fx_codec_jpx_opj.cpp文件中存在安全漏洞,该漏洞源于程序没有正确实现‘sycc420_to_rgb’和‘sycc422_to_rgb’函数。远程攻击者可借助PDF文档中特制的JPEG 2000数据利用该漏洞获取进程内存中的敏感信息,或造成拒绝服务(越边界
CVSS Information
N/A
Vulnerability Type
N/A