Vulnerabilities > Improper Restriction of Operations within the Bounds of a Memory Buffer
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-05 | CVE-2017-8786 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre Pcre2 10.23 pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression. | 9.8 |
| 2017-05-03 | CVE-2017-5240 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Rapid7 Appspider PRO Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a heap-based buffer overflow in the FLAnalyzer.exe component. | 7.5 |
| 2017-05-02 | CVE-2017-7476 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Gnulib 20170425 Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. | 9.8 |
| 2017-05-02 | CVE-2017-8419 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Lame Project Lame LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels. | 7.8 |
| 2017-05-01 | CVE-2017-8399 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre Pcre2 PCRE2 before 10.30 has an out-of-bounds write caused by a stack-based buffer overflow in pcre2_match.c, related to a "pattern with very many captures." | 9.8 |
| 2017-05-01 | CVE-2017-8398 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.28 dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. | 7.5 |
| 2017-05-01 | CVE-2017-8397 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.28 The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing reloc(s) with negative addresses. | 7.5 |
| 2017-05-01 | CVE-2017-8378 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo 0.9.5 Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size. | 9.8 |
| 2017-05-01 | CVE-2017-8373 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Underbit MAD Libmad 0.15.1B The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file. | 7.8 |
| 2017-05-01 | CVE-2016-10350 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libarchive 3.2.2 The archive_read_format_cab_read_header function in archive_read_support_format_cab.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | 5.5 |