|
264991
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
Multiple memory leaks in error paths in fs/xfs/xfs_attr_list.c in the Linux kernel before 4.5.1 allow local users to cause a denial of service (memory consumption) via crafted XFS filesystem operatio…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-9685
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264992
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the #BP and #OF exceptions, which allows guest OS users to cause a denial of service (guest OS crash) by declining to handle an exception…
|
CWE-388
7PK - Errors
|
CVE-2016-9588
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264993
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel me…
|
CWE-416
Use After Free
|
CVE-2016-9576
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264994
|
5.4 |
MEDIUM
Network
|
s9y
|
serendipity
|
Multiple cross-site scripting (XSS) vulnerabilities in Serendipity before 2.0.5 allow remote authenticated users to inject arbitrary web script or HTML via a category or directory name.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9681
|
2024-11-21 12:01 |
2016-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264995
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while destroying gpu resource object in 'virtio_gpu_resource_destroy'. …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9912
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264996
|
6.5 |
MEDIUM
Local
|
qemu
debian
redhat
|
qemu
debian_linux
openstack
virtualization
|
Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehci_init_transfer'. A guest user/process coul…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9911
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264997
|
3.3 |
LOW
Local
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET' command. A guest use…
|
CWE-200
Information Exposure
|
CVE-2016-9908
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264998
|
6.5 |
MEDIUM
Local
|
qemu
debian
redhat
|
qemu
debian_linux
openstack
virtualization
|
Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9907
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264999
|
6.1 |
MEDIUM
Network
|
tiki
|
tikiwiki_cms\/groupware
|
Some forms with the parameter geo_zoomlevel_to_found_location in Tiki Wiki CMS 12.x before 12.10 LTS, 15.x before 15.3 LTS, and 16.x before 16.1 don't have the input sanitized, related to tiki-setup.…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9889
|
2024-11-21 12:01 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265000
|
5.5 |
MEDIUM
Local
|
ffmpeg
|
ffmpeg
|
The che_configure function in libavcodec/aacdec_template.c in FFmpeg before 3.2.1 allows remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a cr…
|
CWE-399
Resource Management Errors
|
CVE-2016-9561
|
2024-11-21 12:01 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
