High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-12	CVE-2018-20103	Infinite Loop vulnerability in multiple products An issue was discovered in dns.c in HAProxy through 1.8.14. network low complexity haproxy canonical redhat CWE-835	7.5
2018-12-12	CVE-2018-20102	Out-of-bounds Read vulnerability in multiple products An out-of-bounds read in dns_validate_dns_response in dns.c was discovered in HAProxy through 1.8.14. network low complexity haproxy canonical redhat CWE-125	7.5
2018-12-12	CVE-2018-16867	Race Condition vulnerability in multiple products A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. local high complexity qemu fedoraproject canonical CWE-362	7.8
2018-12-11	CVE-2018-18356	Use After Free vulnerability in multiple products An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian canonical redhat opensuse CWE-416	8.8
2018-12-07	CVE-2018-9518	Out-of-bounds Write vulnerability in multiple products In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. local low complexity google canonical CWE-787	7.8
2018-12-07	CVE-2018-5810	Out-of-bounds Write vulnerability in multiple products An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash. network low complexity libraw canonical CWE-787	8.8
2018-12-07	CVE-2018-5807	Out-of-bounds Read vulnerability in multiple products An error within the "samsung_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash. network low complexity libraw canonical CWE-125	8.8
2018-12-07	CVE-2018-5802	Out-of-bounds Read vulnerability in multiple products An error within the "kodak_radc_load_raw()" function (internal/dcraw_common.cpp) related to the "buf" variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash. network low complexity libraw redhat canonical debian CWE-125	8.8
2018-12-07	CVE-2017-16909	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An error related to the "LibRaw::panasonic_load_raw()" function (dcraw_common.cpp) in LibRaw versions prior to 0.18.6 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash via a specially crafted TIFF image. network low complexity libraw canonical CWE-119	8.8
2018-12-07	CVE-2018-19931	Out-of-bounds Write vulnerability in multiple products An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. local low complexity gnu netapp canonical CWE-787	7.8