CVE-2016-10714
- EPSS 2.18%
- Veröffentlicht 27.02.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 02:44:34
In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.
CVE-2017-18206
- EPSS 3.17%
- Veröffentlicht 27.02.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:33
In utils.c in zsh before 5.4, symlink expansion had a buffer overflow.
CVE-2018-7548
- EPSS 2.59%
- Veröffentlicht 27.02.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:20
In subst.c in zsh through 5.4.2, there is a NULL pointer dereference when using ${(PA)...} on an empty array result.
CVE-2018-7549
- EPSS 2.64%
- Veröffentlicht 27.02.2018 22:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:20
In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p.
CVE-2018-7492
- EPSS 0.65%
- Veröffentlicht 26.02.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:14
A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.
CVE-2018-7480
- EPSS 0.36%
- Veröffentlicht 25.02.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:12
The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.
CVE-2018-7456
- EPSS 3.02%
- Veröffentlicht 24.02.2018 06:29:00
- Zuletzt bearbeitet 21.11.2024 04:12:10
A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4....
CVE-2018-1305
- EPSS 14.74%
- Veröffentlicht 23.02.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:35
Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way ap...
CVE-2018-7443
- EPSS 3.29%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:08
The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory fu...
CVE-2018-6764
- EPSS 0.33%
- Veröffentlicht 23.02.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:11:08
util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.