CVE-2017-5356
- EPSS 4.78%
- Veröffentlicht 03.03.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formatting sequence (%[) without a closing bracket (]).
CVE-2016-9830
- EPSS 1.71%
- Veröffentlicht 01.03.2017 20:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image.
CVE-2017-5974
- EPSS 1.85%
- Veröffentlicht 01.03.2017 15:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
CVE-2017-5975
- EPSS 2.08%
- Veröffentlicht 01.03.2017 15:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
CVE-2017-5976
- EPSS 2.03%
- Veröffentlicht 01.03.2017 15:59:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
CVE-2016-9559
- EPSS 3.57%
- Veröffentlicht 01.03.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image.
CVE-2017-5946
- EPSS 3.47%
- Veröffentlicht 27.02.2017 07:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a directory traversal vulnerability. If a site allows uploading of .zip files, an attacker can upload a malicious file that uses "../" pathname substrings to write arbitrary files t...
CVE-2017-5669
- EPSS 0.4%
- Veröffentlicht 24.02.2017 15:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The do_shmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for ...
CVE-2017-6298
- EPSS 1.45%
- Veröffentlicht 24.02.2017 04:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "1 of 9. Null Pointer Deref / calloc return value not checked."
CVE-2017-6299
- EPSS 1.18%
- Veröffentlicht 24.02.2017 04:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9. Infinite Loop / DoS in the TNEFFillMapi function in lib/ytnef.c."