CVE-2018-7999 |
graphite2 |
1.3.11 |
In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ttf file. |
6.8 |
Remote (Network) |
Check |
CVE-2017-14502 |
libarchive |
3.3.2 |
read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archive_read_format_rar_read_header. |
5.0 |
Remote (Network) |
Check |
CVE-2017-14166 |
libarchive |
3.3.2 |
libarchive 3.3.2 allows remote attackers to cause a denial of service (xml_data heap-based buffer over-read and application crash) via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archive_read_support_format_xar.c. |
4.3 |
Remote (Network) |
Check |
CVE-2017-14501 |
libarchive |
3.3.2 |
An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archive_read_format_iso9660_read_header. |
4.3 |
Remote (Network) |
Check |
CVE-2017-14503 |
libarchive |
3.3.2 |
libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive, related to lha_crc16. |
4.3 |
Remote (Network) |
Check |
CVE-2017-18269 |
glibc |
2.27 |
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S in the GNU C Library (aka glibc or libc6) 2.21 through 2.27 does not correctly perform the overlapping memory check if the source memory range spans the middle of the address space, resulting in corrupt data being produced by the copy operation. This may disclose information to context-dependent attackers, or result in a denial of service, or, possibly, code execution. |
7.5 |
Remote (Network) |
Check |
CVE-2018-11236 |
glibc |
2.27 |
stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution. |
6.8 |
Remote (Network) |
Check |
CVE-2018-11237 |
glibc |
2.27 |
An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper. |
4.6 |
Local |
Check |
CVE-2018-1000156 |
patch |
2.7.6 |
GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITOR_PROGRAM invocation (using ed) can result in code execution. This attack appear to be exploitable via a patch file processed via the patch utility. This is similar to FreeBSD's CVE-2015-1418 however although they share a common ancestry the code bases have diverged over time. |
6.8 |
Remote (Network) |
Check |
CVE-2018-6951 |
patch |
2.7.6 |
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue. |
5.0 |
Remote (Network) |
Check |
CVE-2018-6952 |
patch |
2.7.6 |
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6. |
5.0 |
Remote (Network) |
Check |
CVE-2016-3189 |
bzip2 |
1.0.6 |
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block. |
4.3 |
Remote (Network) |
Check |
CVE-2018-10360 |
file |
5.33 |
The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file. |
4.3 |
Remote (Network) |
Check |