CVE-2018-17461: Buffer overflow in PDFium
Published Aug 15, 2018
·Updated
An out of bounds read in PDFium in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file.
Credit
Zhen Zhou(NSFOCUS Security Team)
Affected Software
6 affected componentsFixes available
Google Chrome<68.0.3440.75
68.0.3440.75
Google Chrome<68.0.3440.75
Debian Debian Linux=9.0
redhat Enterprise Linux Desktop=6.0
redhat Enterprise Linux Server=6.0
redhat Enterprise Linux Workstation=6.0
Event History
Aug 15, 2018
CVE Published
12:00 AM
Jan 9, 2019
CVE Published
via MITRE·07:00 PM
Data Sourced
via MITRE·07:00 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2018-6153
- CVE-2018-6154
- CVE-2018-6155
- CVE-2018-6156
- CVE-2018-6157
- CVE-2018-6158
- CVE-2018-6159
- CVE-2018-6160
- CVE-2018-6161
- CVE-2018-6162
- CVE-2018-6163
- CVE-2018-6164
- CVE-2018-6165
- CVE-2018-6166
- CVE-2018-6167
- CVE-2018-6168
- CVE-2018-6169
- CVE-2018-6170
- CVE-2018-6171
- CVE-2018-6172
- CVE-2018-6173
- CVE-2018-6174
- CVE-2018-6175
- CVE-2018-6176
- CVE-2018-6177
- CVE-2018-6178
- CVE-2018-6179
- CVE-2018-6044
- CVE-2018-4117
- CVE-2018-17460
- CVE-2018-6150
- CVE-2018-6151
- CVE-2018-6152
Frequently Asked Questions
1
What is the severity of CVE-2018-17461?
The severity of CVE-2018-17461 is high with a score of 8.8.
2
How does CVE-2018-17461 impact Google Chrome?
CVE-2018-17461 allows a remote attacker to perform an out of bounds memory read in Google Chrome prior to version 68.0.3440.75 via a crafted PDF file.
3
How does CVE-2018-17461 impact Debian Linux 9.0?
CVE-2018-17461 affects Debian Linux 9.0.
4
How does CVE-2018-17461 impact Redhat Enterprise Linux Desktop 6.0?
CVE-2018-17461 affects Redhat Enterprise Linux Desktop 6.0.
5
How can I fix CVE-2018-17461?
To fix CVE-2018-17461, update Google Chrome to version 68.0.3440.75 or higher.