Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-12 | CVE-2017-16797 | Integer Overflow or Wraparound vulnerability in Swftools 0.9.2 In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64 multiplication of width and height values, which allows remote attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and application crash) or possibly have unspecified other impact via a crafted PNG file. | 7.8 |
| 2017-11-08 | CVE-2017-16663 | Integer Overflow or Wraparound vulnerability in Sam2P Project Sam2P 0.49.4 In sam2p 0.49.4, there are integer overflows (with resultant heap-based buffer overflows) in input-bmp.ci in the function ReadImage, because "width * height" multiplications occur unsafely. | 5.5 |
| 2017-11-07 | CVE-2017-2921 | Integer Overflow or Wraparound vulnerability in Cesanta Mongoose 6.8 An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. | 9.8 |
| 2017-11-07 | CVE-2017-2892 | Integer Overflow or Wraparound vulnerability in Cesanta Mongoose 6.8 An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. | 9.8 |
| 2017-11-01 | CVE-2017-1000121 | Integer Overflow or Wraparound vulnerability in Webkitgtk Webkitgtk+ The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subsequent buffer overflow in the UI process. | 9.8 |
| 2017-10-31 | CVE-2017-10954 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security Internet Security 2018 prior to build 7.72918. | 8.8 |
| 2017-10-27 | CVE-2017-5063 | Integer Overflow or Wraparound vulnerability in multiple products A numeric overflow in Skia in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. | 8.8 |
| 2017-10-24 | CVE-2017-15873 | Integer Overflow or Wraparound vulnerability in multiple products The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation. | 5.5 |
| 2017-10-18 | CVE-2017-15587 | Integer Overflow or Wraparound vulnerability in Artifex Mupdf 1.11 An integer overflow was discovered in pdf_read_new_xref_section in pdf/pdf-xref.c in Artifex MuPDF 1.11. | 7.8 |
| 2017-10-11 | CVE-2017-2888 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. | 8.8 |