Vulnerabilities > Integer Underflow (Wrap or Wraparound)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-03 | CVE-2017-14496 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request. | 7.5 |
| 2017-09-28 | CVE-2017-14796 | Integer Underflow (Wrap or Wraparound) vulnerability in Libbpg Project Libbpg 0.9.7 The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (integer underflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with copy_CTB_to_hv in hevc_filter.c in libavcodec in FFmpeg and sao_filter_CTB in hevc_filter.c in libavcodec in FFmpeg. | 8.8 |
| 2017-08-24 | CVE-2017-13666 | Integer Underflow (Wrap or Wraparound) vulnerability in Multicorewareinc X265 An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. | 5.5 |
| 2017-08-09 | CVE-2015-2311 | Integer Underflow (Wrap or Wraparound) vulnerability in Capnproto Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow remote peers to cause a denial of service or possibly obtain sensitive information from memory or execute arbitrary code via a crafted message. | 9.8 |
| 2017-07-31 | CVE-2017-11757 | Integer Underflow (Wrap or Wraparound) vulnerability in Actian Pervasive Psql and ZEN Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to execute arbitrary code via crafted traffic to TCP port 1583. | 9.8 |
| 2017-06-13 | CVE-2017-7367 | Integer Underflow (Wrap or Wraparound) vulnerability in Google Android In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image. | 7.8 |
| 2017-05-23 | CVE-2017-9214 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`. | 9.8 |
| 2017-05-12 | CVE-2017-8924 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow. | 4.6 |
| 2017-05-12 | CVE-2017-8911 | Integer Underflow (Wrap or Wraparound) vulnerability in Tnef Project Tnef 1.4.14 An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. | 9.8 |
| 2017-05-11 | CVE-2017-8906 | Integer Underflow (Wrap or Wraparound) vulnerability in Multicorewareinc X265 High Efficiency Video Coding 2.4 An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.4, as used by the x265_encoder_encode dependency in libbpg and other products. | 5.5 |