Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-13 | CVE-2016-7951 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks. | 9.8 |
| 2016-12-13 | CVE-2016-7947 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response. | 9.8 |
| 2016-12-13 | CVE-2016-7945 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in X.org libXi before 1.7.7 allow remote X servers to cause a denial of service (out-of-bounds memory access or infinite loop) via vectors involving length fields. | 7.5 |
| 2016-12-13 | CVE-2016-7944 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync. | 9.8 |
| 2016-12-13 | CVE-2016-5841 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable. | 9.8 |
| 2016-12-12 | CVE-2016-9427 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service (heap buffer overflow crash) and possibly execute arbitrary code via huge allocation. | 9.8 |
| 2016-12-12 | CVE-2016-9426 | Integer Overflow or Wraparound vulnerability in Tats W3M An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. | 8.8 |
| 2016-12-10 | CVE-2016-6888 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maximum fragmentation count, which triggers an unchecked multiplication and NULL pointer dereference. | 4.4 |
| 2016-12-09 | CVE-2016-9104 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset, which triggers an out-of-bounds access. | 4.4 |
| 2016-12-06 | CVE-2015-8870 | Integer Overflow or Wraparound vulnerability in Libtiff Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service (heap-based buffer over-read), or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file. | 7.4 |