Vulnerabilities > Integer Underflow (Wrap or Wraparound)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-28 | CVE-2017-14796 | Integer Underflow (Wrap or Wraparound) vulnerability in Libbpg Project Libbpg 0.9.7 The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (integer underflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with copy_CTB_to_hv in hevc_filter.c in libavcodec in FFmpeg and sao_filter_CTB in hevc_filter.c in libavcodec in FFmpeg. | 8.8 |
| 2017-08-24 | CVE-2017-13666 | Integer Underflow (Wrap or Wraparound) vulnerability in Multicorewareinc X265 An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. | 5.5 |
| 2017-08-09 | CVE-2015-2311 | Integer Underflow (Wrap or Wraparound) vulnerability in Capnproto Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow remote peers to cause a denial of service or possibly obtain sensitive information from memory or execute arbitrary code via a crafted message. | 9.8 |
| 2017-07-31 | CVE-2017-11757 | Integer Underflow (Wrap or Wraparound) vulnerability in Actian Pervasive Psql and ZEN Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to execute arbitrary code via crafted traffic to TCP port 1583. | 9.8 |
| 2017-06-13 | CVE-2017-7367 | Integer Underflow (Wrap or Wraparound) vulnerability in Google Android In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image. | 7.8 |
| 2017-05-23 | CVE-2017-9214 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function `ofputil_pull_queue_get_config_reply10` in `lib/ofp-util.c`. | 9.8 |
| 2017-05-12 | CVE-2017-8924 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow. | 4.6 |
| 2017-05-12 | CVE-2017-8911 | Integer Underflow (Wrap or Wraparound) vulnerability in Tnef Project Tnef 1.4.14 An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. | 9.8 |
| 2017-05-11 | CVE-2017-8906 | Integer Underflow (Wrap or Wraparound) vulnerability in Multicorewareinc X265 High Efficiency Video Coding 2.4 An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.4, as used by the x265_encoder_encode dependency in libbpg and other products. | 5.5 |
| 2017-04-12 | CVE-2017-3034 | Integer Underflow (Wrap or Wraparound) vulnerability in Adobe products Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the XML Forms Architecture (XFA) engine, related to layout functionality. | 7.8 |