CVE-2014-7903

Google Chrome < 39.0.2171.65 - Buffer Overflow in PDFium OpenJPEG via Crafted JPEG Image

Title source: llm
STIX 2.1

Description

Buffer overflow in OpenJPEG before r2911 in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG image.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031241
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98791
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71164
Release Notes, Vendor Advisory x_refsource_confirm
http://googlechromereleases.blogspot.com/2014/11/stable-channel-update_18.html

Scores

EPSS 0.0147
EPSS Percentile 70.6%

Details

CWE
CWE-119
Status published
Products (1)
google/chrome < 39.0.2171.45
Published Nov 19, 2014
Tracked Since Feb 18, 2026