CVE-2016-7044
- EPSS 4.71%
- Veröffentlicht 27.09.2016 15:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The unformat_24bit_color function in the format parsing code in Irssi before 0.8.20, when compiled with true-color enabled, allows remote attackers to cause a denial of service (heap corruption and crash) via an incomplete 24bit color code.
CVE-2016-6306
- EPSS 41.68%
- Veröffentlicht 26.09.2016 19:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.
CVE-2016-7162
- EPSS 3.33%
- Veröffentlicht 26.09.2016 15:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.
CVE-2015-8934
- EPSS 2.3%
- Veröffentlicht 20.09.2016 14:15:20
- Zuletzt bearbeitet 06.05.2026 22:30:45
The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted rar file.
CVE-2015-8933
- EPSS 2.03%
- Veröffentlicht 20.09.2016 14:15:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file.
CVE-2015-8931
- EPSS 2.12%
- Veröffentlicht 20.09.2016 14:15:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in libarchive before 3.2.0 allow remote attackers to have unspecified impact via a crafted mtree file, which triggers undefin...
CVE-2015-8932
- EPSS 2.21%
- Veröffentlicht 20.09.2016 14:15:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which triggers an invalid left shift.
CVE-2015-8930
- EPSS 4.29%
- Veröffentlicht 20.09.2016 14:15:17
- Zuletzt bearbeitet 06.05.2026 22:30:45
bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself.
CVE-2015-8928
- EPSS 2.06%
- Veröffentlicht 20.09.2016 14:15:15
- Zuletzt bearbeitet 06.05.2026 22:30:45
The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.
CVE-2015-8926
- EPSS 2%
- Veröffentlicht 20.09.2016 14:15:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive.