CVE-2016-5210 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-5210 Interim 1 20 2023-12-09T01:16:00Z current 2021-05-30T13:43:13Z 2023-12-09T01:16:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-5210 Heap buffer overflow during TIFF image parsing in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2TVPLHULGNPUMH6D6ENQ6KMK2P3NNDAT/#2TVPLHULGNPUMH6D6ENQ6KMK2P3NNDAT E-Mail link for openSUSE-SU-2016:3108-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IOM3J2HPT4XSGXITE6DSNQRVKV6CULMT/#IOM3J2HPT4XSGXITE6DSNQRVKV6CULMT E-Mail link for openSUSE-SU-2017:0563-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 12 SP2 openSUSE Leap 15.0 openSUSE Leap 15.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed chromedriver-55.0.2883.75-2.1 chromedriver-55.0.2883.75-3.1 chromium-101.0.4951.64-bp154.1.2 chromium-55.0.2883.75-2.1 chromium-55.0.2883.75-3.1 chromium-66.0.3359.170-lp150.1.1 chromium-83.0.4103.97-lp152.1.1 chromium-90.0.4430.212-bp153.1.1 chromedriver-55.0.2883.75-2.1 as a component of SUSE Package Hub 12 SP2 chromium-55.0.2883.75-2.1 as a component of SUSE Package Hub 12 SP2 chromium-66.0.3359.170-lp150.1.1 as a component of openSUSE Leap 15.0 chromium-83.0.4103.97-lp152.1.1 as a component of openSUSE Leap 15.2 chromium-90.0.4430.212-bp153.1.1 as a component of openSUSE Leap 15.3 chromium-101.0.4951.64-bp154.1.2 as a component of openSUSE Leap 15.4 chromedriver-55.0.2883.75-3.1 as a component of openSUSE Tumbleweed chromium-55.0.2883.75-3.1 as a component of openSUSE Tumbleweed Heap buffer overflow during TIFF image parsing in PDFium in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CVE-2016-5210 SUSE Package Hub 12 SP2:chromedriver-55.0.2883.75-2.1 SUSE Package Hub 12 SP2:chromium-55.0.2883.75-2.1 openSUSE Leap 15.0:chromium-66.0.3359.170-lp150.1.1 openSUSE Leap 15.2:chromium-83.0.4103.97-lp152.1.1 openSUSE Leap 15.3:chromium-90.0.4430.212-bp153.1.1 openSUSE Leap 15.4:chromium-101.0.4951.64-bp154.1.2 openSUSE Tumbleweed:chromedriver-55.0.2883.75-3.1 openSUSE Tumbleweed:chromium-55.0.2883.75-3.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H