CVE-2017-9404
- EPSS 1.47%
- Veröffentlicht 02.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.
CVE-2017-6512
- EPSS 2.36%
- Veröffentlicht 01.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
CVE-2017-8386
- EPSS 12.39%
- Veröffentlicht 01.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.3 might allow remote authenticated users to gain pr...
CVE-2017-9239
- EPSS 2.65%
- Veröffentlicht 26.05.2017 10:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentatio...
CVE-2017-9208
- EPSS 1.32%
- Veröffentlicht 23.05.2017 04:29:04
- Zuletzt bearbeitet 13.05.2026 00:24:29
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1.
CVE-2017-9209
- EPSS 1.43%
- Veröffentlicht 23.05.2017 04:29:04
- Zuletzt bearbeitet 13.05.2026 00:24:29
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2.
CVE-2017-9210
- EPSS 1.47%
- Veröffentlicht 23.05.2017 04:29:04
- Zuletzt bearbeitet 13.05.2026 00:24:29
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3.
CVE-2016-9840
- EPSS 4.79%
- Veröffentlicht 23.05.2017 04:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
CVE-2016-9841
- EPSS 7.49%
- Veröffentlicht 23.05.2017 04:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
CVE-2016-9842
- EPSS 5.16%
- Veröffentlicht 23.05.2017 04:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.