Opensuse Project

Leap

35 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2016-9436

  • EPSS 1.36%
  • Published 20.01.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.

6.5

CVE-2016-9435

  • EPSS 1.41%
  • Published 20.01.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.

6.5

CVE-2016-5317

  • EPSS 0.61%
  • Published 20.01.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack (crash) via a crafted TIFF file.

6.5

CVE-2016-5316

  • EPSS 0.86%
  • Published 20.01.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

2.1

CVE-2015-5218

Exploit
  • EPSS 0.08%
  • Published 09.11.2015 16:59:06
  • Last modified 12.04.2025 10:46:40

Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.