Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-23 | CVE-2016-9923 | Use After Free vulnerability in Qemu Quick Emulator (Qemu) built with the 'chardev' backend support is vulnerable to a use after free issue. | 5.5 |
| 2016-12-23 | CVE-2016-9921 | Divide By Zero vulnerability in multiple products Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to a divide by zero issue. | 6.5 |
| 2016-12-23 | CVE-2016-9912 | Missing Release of Resource after Effective Lifetime vulnerability in Qemu Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. | 6.5 |
| 2016-12-23 | CVE-2016-9911 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage issue. | 6.5 |
| 2016-12-23 | CVE-2016-9908 | Information Exposure vulnerability in Qemu Quick Emulator (Qemu) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. | 3.3 |
| 2016-12-23 | CVE-2016-9907 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory leakage flaw. | 6.5 |
| 2016-12-23 | CVE-2016-9037 | Out-of-bounds Read vulnerability in Tarantool 1.7.2 An exploitable out-of-bounds array access vulnerability exists in the xrow_header_decode function of Tarantool 1.7.2.0-g8e92715. | 7.5 |
| 2016-12-23 | CVE-2016-9036 | Out-of-bounds Read vulnerability in Tarantool Msgpuck 1.0.3 An exploitable incorrect return value vulnerability exists in the mp_check function of Tarantool's Msgpuck library 1.0.3. | 7.5 |
| 2016-12-23 | CVE-2016-8707 | Out-of-bounds Write vulnerability in multiple products An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. | 7.8 |
| 2016-12-23 | CVE-2016-7968 | Code Injection vulnerability in KDE Kmail KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. | 6.5 |