CVE-2016-7118
- EPSS 0.37%
- Veröffentlicht 31.08.2016 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
fs/fcntl.c in the "aufs 3.2.x+setfl-debian" patch in the linux-image package 3.2.0-4 (kernel 3.2.81-1) in Debian wheezy mishandles F_SETFL fcntl calls on directories, which allows local users to cause a denial of service (NULL pointer dereference and...
CVE-2016-6254
- EPSS 5.7%
- Veröffentlicht 19.08.2016 21:59:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.
- EPSS 4.49%
- Veröffentlicht 19.08.2016 21:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the my_login function in DBD::mysql before 4.033_01 allows attackers to have unspecified impact by leveraging a call to mysql_errno after a failure of my_login.
- EPSS 6.03%
- Veröffentlicht 19.08.2016 21:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in DBD::mysql before 4.029 allows attackers to cause a denial of service (program crash) or possibly execute arbitrary code via vectors related to a lost server connection.
CVE-2016-5384
- EPSS 0.4%
- Veröffentlicht 13.08.2016 01:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cache file.
CVE-2016-6214
- EPSS 3.2%
- Veröffentlicht 12.08.2016 15:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.
CVE-2016-6207
- EPSS 6.26%
- Veröffentlicht 12.08.2016 15:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vecto...
CVE-2016-6161
- EPSS 2.77%
- Veröffentlicht 12.08.2016 15:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
CVE-2016-6132
- EPSS 3.27%
- Veröffentlicht 12.08.2016 15:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The gdImageCreateFromTgaCtx function in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.
CVE-2016-5421
- EPSS 8.04%
- Veröffentlicht 10.08.2016 14:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors.