|
255441
|
5.5 |
MEDIUM
Local
|
elfutils_project
debian
canonical
|
elfutils
debian_linux
ubuntu_linux
|
The check_group function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7610
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255442
|
5.5 |
MEDIUM
Local
|
elfutils_project
|
elfutils
|
elf_compress.c in elfutils 0.168 does not validate the zlib compression factor, which allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.
|
CWE-20
Improper Input Validation
|
CVE-2017-7609
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255443
|
5.5 |
MEDIUM
Local
|
elfutils_project
debian
canonical
|
elfutils
debian_linux
ubuntu_linux
|
The ebl_object_note_type_name function in eblobjnotetypename.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7608
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255444
|
5.5 |
MEDIUM
Local
|
elfutils_project
|
elfutils
|
The handle_gnu_hash function in readelf.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7607
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255445
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service …
|
CWE-20
Improper Input Validation
|
CVE-2017-7606
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255446
|
7.8 |
HIGH
Local
|
libaacplus_project
|
libaacplus
|
aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion failure, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other i…
|
CWE-617
Reachable Assertion
|
CVE-2017-7605
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255447
|
7.8 |
HIGH
Local
|
libaacplus_project
|
libaacplus
|
au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have un…
|
CWE-20
Improper Input Validation
|
CVE-2017-7604
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255448
|
7.8 |
HIGH
Local
|
libaacplus_project
|
libaacplus
|
au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified ot…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7603
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255449
|
7.8 |
HIGH
Local
|
libtiff
|
libtiff
|
LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7602
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255450
|
7.8 |
HIGH
Local
|
libtiff
|
libtiff
|
LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unsp…
|
CWE-20
Improper Input Validation
|
CVE-2017-7601
|
2024-11-21 12:32 |
2017-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
