Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2017-02-27 CVE-2016-9815 Improper Access Control vulnerability in XEN 4.7.0/4.7.1
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host panic) by sending an asynchronous abort.
local
low complexity
xen CWE-284
6.5
2017-02-27 CVE-2016-7553 Permission Issues vulnerability in Irssi Buf.Pl 2.13
The buf.pl script before 2.20 in Irssi before 0.8.20 uses weak permissions for the scrollbuffer dump file created between upgrades, which might allow local users to obtain sensitive information from private chat conversations by reading the file.
local
low complexity
irssi CWE-275
3.3
2017-02-27 CVE-2016-5240 Improper Input Validation vulnerability in Graphicsmagick
The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined SVG file.
local
low complexity
graphicsmagick CWE-20
5.5
2017-02-27 CVE-2016-10029 Out-of-bounds Read vulnerability in Qemu
The virtio_gpu_set_scanout function in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a scanout id in a VIRTIO_GPU_CMD_SET_SCANOUT command larger than num_scanouts.
local
low complexity
qemu CWE-125
5.5
2017-02-27 CVE-2016-10028 Out-of-bounds Read vulnerability in Qemu
The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a VIRTIO_GPU_CMD_GET_CAPSET command with a maximum capabilities size with a value of 0.
local
low complexity
qemu CWE-125
5.5
2017-02-27 CVE-2015-8903 Infinite Loop vulnerability in Imagemagick
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8902 Infinite Loop vulnerability in Imagemagick
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8901 Infinite Loop vulnerability in Imagemagick
ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8900 Infinite Loop vulnerability in Imagemagick
The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file.
local
low complexity
imagemagick CWE-835
5.5
2017-02-27 CVE-2016-8387 Out-of-bounds Write vulnerability in Iceni Argus 6.6.04
An exploitable heap-based buffer overflow exists in Iceni Argus.
local
low complexity
iceni CWE-787
7.8