CVE-2016-1686

CVE-2016-1686

The CPDF_DIBSource::CreateDecoder function in core/fpdfapi/fpdf_render/fpdf_render_loadimage.cpp in PDFium, as used in Google Chrome before 51.0.2704.63, mishandles decoder-initialization failure, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document.

Source: CVE-2016-1686

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다