CVE-2018-16802
- EPSS 2.16%
- Veröffentlicht 10.09.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:53:22
An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the "pipe...
- EPSS 0.33%
- Veröffentlicht 10.09.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:27
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the AF_VSOCK protocol to gath...
CVE-2018-16749
- EPSS 2.29%
- Veröffentlicht 09.09.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:53:17
In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file.
CVE-2018-16750
- EPSS 2.91%
- Veröffentlicht 09.09.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:53:17
In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.
CVE-2018-16658
- EPSS 0.55%
- Veröffentlicht 07.09.2018 14:29:03
- Zuletzt bearbeitet 21.11.2024 03:53:09
An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds...
CVE-2018-0644
- EPSS 1.01%
- Veröffentlicht 07.09.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 03:38:39
Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-client2) 1:1.4.9+p41-u4jma1 and earlier, Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2) 1:2.0.0+p48-u4jma1 and earlier, and Ubuntu16.04 O...
CVE-2018-0643
- EPSS 0.53%
- Veröffentlicht 07.09.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:38:39
Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-server) 1:1.4.9+p41-u4jma1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.
CVE-2018-16646
- EPSS 2.88%
- Veröffentlicht 06.09.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:53:08
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
CVE-2018-16643
- EPSS 3.08%
- Veröffentlicht 06.09.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 03:53:07
The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders/cals.c, and ReadPICTImage in coders/pict.c in ImageMagick 7.0.8-4 do not check the return value of the fputc function, which allows remote attackers to ...
CVE-2018-16644
- EPSS 3.65%
- Veröffentlicht 06.09.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 03:53:07
There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image.