CVE-2017-5511
- EPSS 5.47%
- Veröffentlicht 24.03.2017 15:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
CVE-2017-5506
- EPSS 2.07%
- Veröffentlicht 24.03.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVE-2016-10149
- EPSS 3.86%
- Veröffentlicht 24.03.2017 14:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.
CVE-2016-9556
- EPSS 2.28%
- Veröffentlicht 23.03.2017 18:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file.
CVE-2016-9774
- EPSS 0.75%
- Veröffentlicht 23.03.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The postinst script in the tomcat6 package before 6.0.45+dfsg-1~deb7u4 on Debian wheezy, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7u8 on Debian wheezy, before 7.0.56-3+deb8u6 on Debi...
CVE-2016-9775
- EPSS 0.74%
- Veröffentlicht 23.03.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The postrm script in the tomcat6 package before 6.0.45+dfsg-1~deb7u3 on Debian wheezy, before 6.0.45+dfsg-1~deb8u1 on Debian jessie, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7u7 on D...
CVE-2017-5897
- EPSS 4.95%
- Veröffentlicht 23.03.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The ip6gre_err function in net/ipv6/ip6_gre.c in the Linux kernel allows remote attackers to have unspecified impact via vectors involving GRE flags in an IPv6 packet, which trigger an out-of-bounds access.
CVE-2017-5987
- EPSS 0.42%
- Veröffentlicht 20.03.2017 16:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator) allows local OS guest privileged users to cause a denial of service (infinite loop and QEMU process crash) via vectors involving the transfer mode register du...
CVE-2017-6831
- EPSS 3.09%
- Veröffentlicht 20.03.2017 16:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
CVE-2017-6832
- EPSS 2.99%
- Veröffentlicht 20.03.2017 16:59:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.