|
247941
|
9.8 |
CRITICAL
Network
|
libdwarf_project
|
libdwarf
|
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer was dereferenced just before it was checked for being in bounds, leading to…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9054
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247942
|
9.1 |
CRITICAL
Network
|
libdwarf_project
|
libdwarf
|
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in _dwarf_read_loc_expr_op() is due to a failure to check a pointer for being in bounds (in …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9053
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247943
|
9.8 |
CRITICAL
Network
|
libdwarf_project
|
libdwarf
|
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few pl…
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2017-9052
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247944
|
9.8 |
CRITICAL
Network
|
libav
|
libav
|
libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in the nsv_read_chunk function in libavformat/nsvdec.c.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9051
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247945
|
7.5 |
HIGH
Network
|
xmlsoft
|
libxml2
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to cra…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9050
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247946
|
7.5 |
HIGH
Network
|
xmlsoft
|
libxml2
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, t…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9049
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247947
|
7.5 |
HIGH
Network
|
xmlsoft
|
libxml2
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition in…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9048
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247948
|
7.5 |
HIGH
Network
|
xmlsoft
|
libxml2
|
A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char b…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9047
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247949
|
5.9 |
MEDIUM
Network
|
google
|
google_i\/o_2017
|
The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof …
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2017-9045
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247950
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
The print_symbol_for_build_attribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted ELF file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9044
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
