|
255061
|
5.5 |
MEDIUM
Local
|
gnome
|
libcroco
|
The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7960
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255062
|
7.8 |
HIGH
Local
|
artifex
|
ghostscript
|
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified o…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7948
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255063
|
7.8 |
HIGH
Local
|
gnome
|
libcroco
|
The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attacker…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7961
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255064
|
5.5 |
MEDIUM
Local
|
radare
|
radare2
|
The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.
|
CWE-416
Use After Free
|
CVE-2017-7946
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255065
|
6.5 |
MEDIUM
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-7943
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255066
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-7942
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255067
|
6.5 |
MEDIUM
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-7941
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255068
|
5.5 |
MEDIUM
Local
|
entropymine
|
imageworsener
|
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-7940
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255069
|
5.5 |
MEDIUM
Local
|
entropymine
|
imageworsener
|
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7939
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255070
|
3.5 |
LOW
Network
|
redhat
|
openshift
|
An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants in Hawkular Metrics and projects/namespaces in OpenShift. If a user creates a project called "MyProjec…
|
-
|
CVE-2017-7517
|
2024-11-21 12:32 |
2022-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
