Out-of-bounds Array Access Vulnerability in OpenJPEG

Out-of-bounds Array Access Vulnerability in OpenJPEG

CVE-2015-6776 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The opj_dwt_decode_1* functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during a discrete wavelet transform.

Learn more about our Cis Benchmark Audit For Google Chrome.