[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-1626":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":88,"related":89,"reserved_at":9,"published_at":93,"modified_at":94,"state":95,"summary":96,"references_raw":105,"kevs":165,"epss":166,"epss_history":169,"metrics":428,"affected":438},"CVE-2016-1626","The opj_pi_update_decode_poc function in pi.c in OpenJPEG, as used in PDFium in Google Chrome before 48.0.2564.109, miscalculates a certain layer index value, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86],{"_key":73},"RHSA-2016:0241",{"_key":75},"UBUNTU-CVE-2016-1626",{"_key":77},"OPENSUSE-SU-2024:10171-1",{"_key":79},"OPENSUSE-SU-2024:12948-1",{"_key":81},"DSA-3486-1",{"_key":83},"DSA-4013-1",{"_key":85},"MGASA-2016-0127",{"_key":87},"DEBIAN-CVE-2016-1626",[],[90,91,92],{"_key":77},{"_key":79},{"_key":85},"2016-02-14T02:00:00.000Z","2024-08-05T23:02:12.447Z","Modified",{"cisa_kev":97,"cisa_ransomware":97,"cisa_vendor":9,"epss_severity":98,"epss_score":99,"severity":100,"severity_score":101,"severity_version":102,"severity_source":103,"severity_vector":104,"severity_status":95},false,"low",0.00638,"medium",4.3,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",[106,113,118,124,129,133,138,142,146,151,155,160],{"url":107,"sources":108,"tags":110},"http://www.securityfocus.com/bid/83125",[109,103],"cve.org",[111,112],"VDB Entry","X Refsource BID",{"url":114,"sources":115,"tags":116},"https://codereview.chromium.org/1583233008",[109,103],[117],"X Refsource CONFIRM",{"url":119,"sources":120,"tags":121},"https://security.gentoo.org/glsa/201710-26",[109,103],[122,123],"Vendor Advisory","X Refsource GENTOO",{"url":125,"sources":126,"tags":127},"http://www.securitytracker.com/id/1035183",[109,103],[111,128],"X Refsource SECTRACK",{"url":130,"sources":131,"tags":132},"https://code.google.com/p/chromium/issues/detail?id=571480",[109,103],[117],{"url":134,"sources":135,"tags":136},"http://www.zerodayinitiative.com/advisories/ZDI-16-171",[109,103],[137],"X Refsource MISC",{"url":139,"sources":140,"tags":141},"http://googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html",[109,103],[117],{"url":143,"sources":144,"tags":145},"https://security.gentoo.org/glsa/201603-09",[109,103],[122,123],{"url":147,"sources":148,"tags":149},"http://lists.opensuse.org/opensuse-updates/2016-02/msg00104.html",[109,103],[122,150],"X Refsource SUSE",{"url":152,"sources":153,"tags":154},"http://lists.opensuse.org/opensuse-updates/2016-02/msg00119.html",[109,103],[122,150],{"url":156,"sources":157,"tags":158},"http://www.debian.org/security/2016/dsa-3486",[109,103],[122,159],"X Refsource DEBIAN",{"url":161,"sources":162,"tags":163},"http://rhn.redhat.com/errata/RHSA-2016-0241.html",[109,103],[122,164],"X Refsource REDHAT",[],{"date":167,"score":99,"percentile":168},"2026-06-04",0.70879,[170,173,176,179,182,185,188,191,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,237,240,242,245,248,251,254,257,260,263,266,268,271,274,277,280,283,286,289,292,294,297,300,303,306,309,312,315,318,321,324,327,330,332,335,337,340,343,345,347,350,353,356,359,362,364,366,369,372,375,378,381,384,387,390,392,395,398,401,404,407,410,413,416,419,422,425],{"date":171,"score":99,"percentile":172},"2025-11-04",0.69669,{"date":174,"score":99,"percentile":175},"2025-11-05",0.69656,{"date":177,"score":99,"percentile":178},"2025-11-06",0.69653,{"date":180,"score":99,"percentile":181},"2025-11-07",0.69665,{"date":183,"score":99,"percentile":184},"2025-11-08",0.69664,{"date":186,"score":99,"percentile":187},"2025-11-09",0.69654,{"date":189,"score":99,"percentile":190},"2025-11-10",0.69645,{"date":192,"score":99,"percentile":187},"2025-11-11",{"date":194,"score":99,"percentile":195},"2025-11-12",0.69677,{"date":197,"score":99,"percentile":198},"2025-11-13",0.69684,{"date":200,"score":99,"percentile":201},"2025-11-14",0.69692,{"date":203,"score":99,"percentile":204},"2025-11-15",0.69689,{"date":206,"score":99,"percentile":207},"2025-11-16",0.69686,{"date":209,"score":99,"percentile":210},"2025-11-17",0.69683,{"date":212,"score":99,"percentile":213},"2025-11-18",0.68115,{"date":215,"score":99,"percentile":216},"2025-11-19",0.68123,{"date":218,"score":99,"percentile":219},"2025-11-20",0.68116,{"date":221,"score":99,"percentile":222},"2025-11-21",0.69697,{"date":224,"score":99,"percentile":225},"2025-11-22",0.69693,{"date":227,"score":99,"percentile":228},"2025-11-23",0.69678,{"date":230,"score":99,"percentile":231},"2025-11-24",0.6967,{"date":233,"score":99,"percentile":234},"2025-11-25",0.69671,{"date":236,"score":99,"percentile":195},"2025-11-26",{"date":238,"score":99,"percentile":239},"2025-11-27",0.69679,{"date":241,"score":99,"percentile":172},"2025-11-28",{"date":243,"score":99,"percentile":244},"2025-11-29",0.69657,{"date":246,"score":99,"percentile":247},"2025-11-30",0.69652,{"date":249,"score":99,"percentile":250},"2025-12-01",0.69799,{"date":252,"score":99,"percentile":253},"2025-12-02",0.69809,{"date":255,"score":99,"percentile":256},"2025-12-03",0.69804,{"date":258,"score":99,"percentile":259},"2025-12-04",0.69648,{"date":261,"score":99,"percentile":262},"2025-12-05",0.69661,{"date":264,"score":99,"percentile":265},"2025-12-06",0.69667,{"date":267,"score":99,"percentile":184},"2025-12-07",{"date":269,"score":99,"percentile":270},"2025-12-08",0.69668,{"date":272,"score":99,"percentile":273},"2025-12-09",0.697,{"date":275,"score":99,"percentile":276},"2025-12-10",0.69743,{"date":278,"score":99,"percentile":279},"2025-12-11",0.69764,{"date":281,"score":99,"percentile":282},"2025-12-12",0.6979,{"date":284,"score":99,"percentile":285},"2025-12-13",0.69792,{"date":287,"score":99,"percentile":288},"2025-12-14",0.69795,{"date":290,"score":99,"percentile":291},"2025-12-15",0.69791,{"date":293,"score":99,"percentile":250},"2025-12-16",{"date":295,"score":99,"percentile":296},"2025-12-17",0.69813,{"date":298,"score":99,"percentile":299},"2025-12-18",0.69842,{"date":301,"score":99,"percentile":302},"2025-12-19",0.69859,{"date":304,"score":99,"percentile":305},"2025-12-20",0.69856,{"date":307,"score":99,"percentile":308},"2025-12-21",0.69847,{"date":310,"score":99,"percentile":311},"2025-12-22",0.69844,{"date":313,"score":99,"percentile":314},"2025-12-23",0.69846,{"date":316,"score":99,"percentile":317},"2025-12-24",0.69853,{"date":319,"score":99,"percentile":320},"2025-12-25",0.69877,{"date":322,"score":99,"percentile":323},"2025-12-26",0.69876,{"date":325,"score":99,"percentile":326},"2025-12-27",0.69917,{"date":328,"score":99,"percentile":329},"2025-12-28",0.6985,{"date":331,"score":99,"percentile":314},"2025-12-29",{"date":333,"score":99,"percentile":334},"2025-12-30",0.69858,{"date":336,"score":99,"percentile":320},"2025-12-31",{"date":338,"score":99,"percentile":339},"2026-01-01",0.70036,{"date":341,"score":99,"percentile":342},"2026-01-02",0.70029,{"date":344,"score":99,"percentile":342},"2026-01-03",{"date":346,"score":99,"percentile":323},"2026-01-04",{"date":348,"score":99,"percentile":349},"2026-01-05",0.69867,{"date":351,"score":99,"percentile":352},"2026-01-06",0.69875,{"date":354,"score":99,"percentile":355},"2026-01-07",0.6989,{"date":357,"score":99,"percentile":358},"2026-01-08",0.69905,{"date":360,"score":99,"percentile":361},"2026-01-09",0.69911,{"date":363,"score":99,"percentile":361},"2026-01-10",{"date":365,"score":99,"percentile":358},"2026-01-11",{"date":367,"score":99,"percentile":368},"2026-01-12",0.69899,{"date":370,"score":99,"percentile":371},"2026-01-13",0.69895,{"date":373,"score":99,"percentile":374},"2026-01-14",0.69925,{"date":376,"score":99,"percentile":377},"2026-01-15",0.69932,{"date":379,"score":99,"percentile":380},"2026-01-16",0.6995,{"date":382,"score":99,"percentile":383},"2026-01-17",0.69942,{"date":385,"score":99,"percentile":386},"2026-01-18",0.69923,{"date":388,"score":99,"percentile":389},"2026-01-19",0.69916,{"date":391,"score":99,"percentile":374},"2026-01-20",{"date":393,"score":99,"percentile":394},"2026-01-21",0.69929,{"date":396,"score":99,"percentile":397},"2026-01-22",0.69941,{"date":399,"score":99,"percentile":400},"2026-01-23",0.69973,{"date":402,"score":99,"percentile":403},"2026-01-24",0.69977,{"date":405,"score":99,"percentile":406},"2026-01-25",0.69949,{"date":408,"score":99,"percentile":409},"2026-01-26",0.69945,{"date":411,"score":99,"percentile":412},"2026-01-27",0.69947,{"date":414,"score":99,"percentile":415},"2026-01-28",0.69961,{"date":417,"score":99,"percentile":418},"2026-01-29",0.69958,{"date":420,"score":99,"percentile":421},"2026-01-30",0.69966,{"date":423,"score":99,"percentile":424},"2026-01-31",0.69972,{"date":426,"score":99,"percentile":427},"2026-02-01",0.70106,[429],{"source":103,"cvss_v2_0":430,"cvss_v3_0":434,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":101,"baseSeverity":9,"vectorString":431,"impactScore":432,"exploitabilityScore":433},"AV:N/AC:M/Au:N/C:P/I:N/A:N",2.9,8.6,{"baseScore":101,"baseSeverity":435,"vectorString":104,"impactScore":436,"exploitabilityScore":437},"MEDIUM",2.3,7.2,[439,448,455],{"ecosystem":9,"name":440,"vendor":441,"product":442,"cpe_part":443,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":444},"debian linux","debian","debian_linux","o",[445],{"version":446,"is_range":97,"range_type":447,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"ecosystem":9,"name":449,"vendor":450,"product":449,"cpe_part":451,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":452},"chrome","google","a",[453],{"version":454,"is_range":97,"range_type":447,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"48.0.2564.103",{"ecosystem":9,"name":456,"vendor":456,"product":456,"cpe_part":443,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":457},"opensuse",[458],{"version":459,"is_range":97,"range_type":447,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1"]