12.04

DATE	CVE	VULNERABILITY TITLE	RISK
2017-01-13	CVE-2016-7426	Resource Exhaustion vulnerability in multiple products NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address. network low complexity ntp canonical redhat hpe CWE-400	7.5
2017-01-13	CVE-2016-2090	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow. network low complexity fedoraproject freedesktop debian canonical CWE-119 critical	9.8
2017-01-06	CVE-2016-4323	Path Traversal vulnerability in multiple products A directory traversal exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-22	3.7
2017-01-06	CVE-2016-2380	Out-of-bounds Read vulnerability in multiple products An information leak exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-125	3.1
2017-01-06	CVE-2016-2378	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow vulnerability exists in the handling of the MXIT protocol Pidgin. network high complexity pidgin canonical debian CWE-119	8.1
2017-01-06	CVE-2016-2377	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-119	8.1
2017-01-06	CVE-2016-2376	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-119	8.1
2017-01-06	CVE-2016-2375	Out-of-bounds Read vulnerability in multiple products An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. network low complexity pidgin canonical debian CWE-125	5.3
2017-01-06	CVE-2016-2374	Out-of-bounds Read vulnerability in multiple products An exploitable memory corruption vulnerability exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-125	8.1
2017-01-06	CVE-2016-2373	Out-of-bounds Read vulnerability in multiple products A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. network high complexity pidgin canonical debian CWE-125	5.9