Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-15 | CVE-2017-12863 | Integer Overflow or Wraparound vulnerability in multiple products In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. | 8.8 |
| 2017-08-10 | CVE-2014-0143 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in the block drivers in QEMU, possibly before 2.0.0, allow local users to cause a denial of service (crash) via a crafted catalog size in (1) the parallels_open function in block/parallels.c or (2) bochs_open function in bochs.c, a large L1 table in the (3) qcow2_snapshot_load_tmp in qcow2-snapshot.c or (4) qcow2_grow_l1_table function in qcow2-cluster.c, (5) a large request in the bdrv_check_byte_request function in block.c and other block drivers, (6) crafted cluster indexes in the get_refcount function in qcow2-refcount.c, or (7) a large number of blocks in the cloop_open function in cloop.c, which trigger buffer overflows, memory corruption, large memory allocations and out-of-bounds read and writes. | 7.0 |
| 2017-08-09 | CVE-2017-0729 | Integer Overflow or Wraparound vulnerability in Google Android A elevation of privilege vulnerability in the Android media framework (mediadrmserver). | 7.8 |
| 2017-08-09 | CVE-2015-2310 | Integer Overflow or Wraparound vulnerability in Capnproto Integer overflow in layout.c++ in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 allows remote peers to cause a denial of service or possibly obtain sensitive information from memory via a crafted message, related to pointer validation. | 9.1 |
| 2017-08-04 | CVE-2017-12425 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. | 7.5 |
| 2017-07-26 | CVE-2017-9835 | Integer Overflow or Wraparound vulnerability in multiple products The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. | 7.8 |
| 2017-07-20 | CVE-2017-9765 | Integer Overflow or Wraparound vulnerability in Genivia Gsoap Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via a large XML document, aka Devil's Ivy. | 8.1 |
| 2017-07-12 | CVE-2017-2820 | Integer Overflow or Wraparound vulnerability in Freedesktop Poppler 0.53.0 An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. | 8.8 |
| 2017-07-06 | CVE-2017-0702 | Integer Overflow or Wraparound vulnerability in Google Android 7.1.1/7.1.2 A remote code execution vulnerability in the Android system ui. | 7.8 |
| 2017-07-06 | CVE-2017-0691 | Integer Overflow or Wraparound vulnerability in Google Android 7.0/7.1.1/7.1.2 A denial of service vulnerability in the Android media framework. | 5.5 |