18.04

DATE	CVE	VULNERABILITY TITLE	RISK
2018-09-05	CVE-2018-16510	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in Artifex Ghostscript before 9.24. local low complexity artifex canonical CWE-119	7.8
2018-09-05	CVE-2018-16509	An issue was discovered in Artifex Ghostscript before 9.24. local low complexity debian artifex canonical redhat	7.8
2018-09-04	CVE-2018-6555	Use After Free vulnerability in Linux Kernel The irda_setsockopt function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (ias_object use-after-free and system crash) or possibly have unspecified other impact via an AF_IRDA socket. local low complexity linux canonical debian CWE-416	7.2
2018-09-04	CVE-2018-6554	Missing Release of Resource after Effective Lifetime vulnerability in Linux Kernel Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket. local low complexity linux canonical debian CWE-772	4.9
2018-09-04	CVE-2018-16435	Integer Overflow or Wraparound vulnerability in multiple products Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile. network littlecms canonical redhat debian CWE-190	4.3
2018-09-04	CVE-2018-16429	Out-of-bounds Read vulnerability in multiple products GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in g_markup_parse_context_parse() in gmarkup.c, related to utf8_str(). network low complexity gnome canonical CWE-125	7.5
2018-09-04	CVE-2018-16428	NULL Pointer Dereference vulnerability in multiple products In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer dereference. network low complexity gnome canonical CWE-476	7.5
2018-09-03	CVE-2018-16402	Double Free vulnerability in multiple products libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact because it tries to decompress twice. network low complexity elfutils-project debian redhat opensuse canonical CWE-415 critical	9.8
2018-09-02	CVE-2018-16336	Out-of-bounds Read vulnerability in multiple products Exiv2::Internal::PngChunk::parseTXTChunk in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file, a different vulnerability than CVE-2018-10999. network exiv2 canonical debian CWE-125	4.3
2018-09-01	CVE-2018-16323	Information Exposure vulnerability in multiple products ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. network imagemagick canonical CWE-200	4.3