Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-06 | CVE-2016-10319 | Integer Overflow or Wraparound vulnerability in ARM Trusted Firmware Project ARM Trusted Firmware 1.2/1.3 In ARM Trusted Firmware 1.2 and 1.3, a malformed firmware update SMC can result in copying unexpectedly large data into secure memory because of integer overflows. | 5.9 |
| 2017-04-02 | CVE-2016-8795 | Integer Overflow or Wraparound vulnerability in Huawei products Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset. | 5.9 |
| 2017-04-02 | CVE-2016-6177 | Integer Overflow or Wraparound vulnerability in Huawei Oceanstor 5800 V3 Firmware V300R003C00 The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. | 6.5 |
| 2017-04-02 | CVE-2017-2440 | Integer Overflow or Wraparound vulnerability in Apple products An issue was discovered in certain Apple products. | 7.8 |
| 2017-04-01 | CVE-2017-7395 | Integer Overflow or Wraparound vulnerability in Tigervnc 1.7.1 In TigerVNC 1.7.1 (SMsgReader.cxx SMsgReader::readClientCutText), by causing an integer overflow, an authenticated client can crash the server. | 6.5 |
| 2017-03-29 | CVE-2017-7294 | Integer Overflow or Wraparound vulnerability in Linux Kernel The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service (system hang or crash) or possibly gain privileges, via a crafted ioctl call for a /dev/dri/renderD* device. | 7.8 |
| 2017-03-28 | CVE-2016-9123 | Integer Overflow or Wraparound vulnerability in Go-Jose Project Go-Jose go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures. | 7.5 |
| 2017-03-27 | CVE-2017-5931 | Integer Overflow or Wraparound vulnerability in Qemu Integer overflow in hw/virtio/virtio-crypto.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (QEMU process crash) or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based buffer overflow. | 8.8 |
| 2017-03-23 | CVE-2016-9557 | Integer Overflow or Wraparound vulnerability in Jasper Project Jasper Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file. | 5.5 |
| 2017-03-23 | CVE-2016-9387 | Integer Overflow or Wraparound vulnerability in Jasper Project Jasper Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure. | 7.8 |