CVE-2016-9436
- EPSS 1.36%
- Veröffentlicht 20.01.2017 15:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.
CVE-2016-9435
- EPSS 1.41%
- Veröffentlicht 20.01.2017 15:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.
CVE-2016-5317
- EPSS 0.61%
- Veröffentlicht 20.01.2017 15:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack (crash) via a crafted TIFF file.
CVE-2016-5316
- EPSS 0.86%
- Veröffentlicht 20.01.2017 15:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.
CVE-2015-5218
- EPSS 0.08%
- Veröffentlicht 09.11.2015 16:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.