Vulnerabilities > NULL Pointer Dereference
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-08 | CVE-2017-8843 | NULL Pointer Dereference vulnerability in Long Range ZIP Project Long Range ZIP 0.631 The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive. | 5.5 |
| 2017-05-04 | CVE-2017-3730 | NULL Pointer Dereference vulnerability in multiple products In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. | 7.5 |
| 2017-05-04 | CVE-2016-7053 | NULL Pointer Dereference vulnerability in Openssl 1.1.0/1.1.0A/1.1.0B In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. | 7.5 |
| 2017-05-01 | CVE-2017-8395 | NULL Pointer Dereference vulnerability in GNU Binutils 2.28 The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. | 7.5 |
| 2017-05-01 | CVE-2017-8394 | NULL Pointer Dereference vulnerability in GNU Binutils 2.28 The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 4 due to NULL pointer dereferencing of _bfd_elf_large_com_section. | 7.5 |
| 2017-05-01 | CVE-2017-8392 | NULL Pointer Dereference vulnerability in GNU Binutils 2.28 The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check to determine whether symbols are NULL in the _bfd_dwarf2_find_nearest_line function. | 7.5 |
| 2017-04-25 | CVE-2017-5625 | NULL Pointer Dereference vulnerability in Oneplus Oxygenos 3.2.8/3.5.4/4.0.2 In OxygenOS before 4.0.3 on OnePlus 3 and 3T devices, an unauthorized attacker can cause a locked bootloader to partially dump the ciphertext content of an arbitrary partition (except 'keystore') by issuing the 'fastboot oem dump <partition>' fastboot command. | 4.6 |
| 2017-04-24 | CVE-2017-8106 | NULL Pointer Dereference vulnerability in Linux Kernel The handle_invept function in arch/x86/kvm/vmx.c in the Linux kernel 3.12 through 3.15 allows privileged KVM guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via a single-context INVEPT instruction with a NULL EPT pointer. | 5.5 |
| 2017-04-24 | CVE-2017-1000360 | NULL Pointer Dereference vulnerability in Opendaylight 3.3/4.0 StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. | 5.3 |
| 2017-04-24 | CVE-2017-1000358 | NULL Pointer Dereference vulnerability in Opendaylight 4.0 Controller throws an exception and does not allow user to add subsequent flow for a particular switch. | 6.5 |