|
265181
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the #BP and #OF exceptions, which allows guest OS users to cause a denial of service (guest OS crash) by declining to handle an exception…
|
CWE-388
7PK - Errors
|
CVE-2016-9588
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265182
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel me…
|
CWE-416
Use After Free
|
CVE-2016-9576
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265183
|
5.4 |
MEDIUM
Network
|
s9y
|
serendipity
|
Multiple cross-site scripting (XSS) vulnerabilities in Serendipity before 2.0.5 allow remote authenticated users to inject arbitrary web script or HTML via a category or directory name.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9681
|
2024-11-21 12:01 |
2016-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265184
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while destroying gpu resource object in 'virtio_gpu_resource_destroy'. …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9912
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265185
|
6.5 |
MEDIUM
Local
|
qemu
debian
redhat
|
qemu
debian_linux
openstack
virtualization
|
Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. It could occur while processing packet data in 'ehci_init_transfer'. A guest user/process coul…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9911
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265186
|
3.3 |
LOW
Local
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET' command. A guest use…
|
CWE-200
Information Exposure
|
CVE-2016-9908
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265187
|
6.5 |
MEDIUM
Local
|
qemu
debian
redhat
|
qemu
debian_linux
openstack
virtualization
|
Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. It could occur while destroying the USB redirector in 'usbredir_handle_destroy'. A guest …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2016-9907
|
2024-11-21 12:01 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265188
|
6.1 |
MEDIUM
Network
|
tiki
|
tikiwiki_cms\/groupware
|
Some forms with the parameter geo_zoomlevel_to_found_location in Tiki Wiki CMS 12.x before 12.10 LTS, 15.x before 15.3 LTS, and 16.x before 16.1 don't have the input sanitized, related to tiki-setup.…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9889
|
2024-11-21 12:01 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265189
|
5.5 |
MEDIUM
Local
|
ffmpeg
|
ffmpeg
|
The che_configure function in libavcodec/aacdec_template.c in FFmpeg before 3.2.1 allows remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a cr…
|
CWE-399
Resource Management Errors
|
CVE-2016-9561
|
2024-11-21 12:01 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265190
|
7.8 |
HIGH
Local
|
uclouvain
redhat
|
openjpeg
enterprise_linux
enterprise_linux_for_scientific_computing
enterprise_linux_for_ibm_z_systems
enterprise_linux_for_power_big_endian
|
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-9675
|
2024-11-21 12:01 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
