CVE-2017-10686
- EPSS 2.95%
- Veröffentlicht 29.06.2017 23:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at mul...
CVE-2017-9985
- EPSS 0.33%
- Veröffentlicht 28.06.2017 06:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The snd_msndmidi_input_read function in sound/isa/msnd/msnd_midi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by changing the value of a message ...
CVE-2015-5180
- EPSS 6.22%
- Veröffentlicht 27.06.2017 20:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash).
CVE-2017-9935
- EPSS 3.92%
- Veröffentlicht 26.06.2017 12:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an i...
CVE-2017-9936
- EPSS 7.48%
- Veröffentlicht 26.06.2017 12:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.
CVE-2017-9815
- EPSS 1.58%
- Veröffentlicht 22.06.2017 15:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function _TIFFmalloc in tif_unix.c) via a crafted file.
CVE-2017-9022
- EPSS 1.73%
- Veröffentlicht 08.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.
CVE-2017-9471
- EPSS 1.17%
- Veröffentlicht 07.06.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
CVE-2017-9473
- EPSS 1.19%
- Veröffentlicht 07.06.2017 05:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
CVE-2017-9403
- EPSS 1.25%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.