CVE-2017-17817
- EPSS 1.4%
- Veröffentlicht 21.12.2017 03:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_verror in asm/preproc.c that will cause a remote denial of service attack.
CVE-2017-17818
- EPSS 2.72%
- Veröffentlicht 21.12.2017 03:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.
CVE-2017-17819
- EPSS 1.37%
- Veröffentlicht 21.12.2017 03:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are not validated.
CVE-2017-17820
- EPSS 1.39%
- Veröffentlicht 21.12.2017 03:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_list_one_macro in asm/preproc.c that will lead to a remote denial of service attack, related to mishandling of operand-type errors.
CVE-2017-17805
- EPSS 0.43%
- Veröffentlicht 20.12.2017 23:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service ...
CVE-2017-17806
- EPSS 0.56%
- Veröffentlicht 20.12.2017 23:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HAS...
CVE-2017-17786
- EPSS 1.34%
- Veröffentlicht 20.12.2017 09:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected bits-per-pixel value for an RGBA image.
CVE-2017-17787
- EPSS 1.06%
- Veröffentlicht 20.12.2017 09:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.
CVE-2017-17788
- EPSS 1.13%
- Veröffentlicht 20.12.2017 09:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character after the version string.
CVE-2017-17789
- EPSS 1.95%
- Veröffentlicht 20.12.2017 09:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c.