Vulnerabilities > Out-of-bounds Read
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-05 | CVE-2017-15037 | Out-of-bounds Read vulnerability in Freebsd In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition with a resultant out-of-bounds read, because it can cause t2p->t_name strings to lack a final '\0' character. | 8.1 |
| 2017-10-05 | CVE-2017-15021 | Out-of-bounds Read vulnerability in GNU Binutils 2.29 bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to bfd_getl32. | 5.5 |
| 2017-10-05 | CVE-2017-15020 | Out-of-bounds Read vulnerability in GNU Binutils 2.29 dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles pointers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file, related to parse_die and parse_line_table, as demonstrated by a parse_die heap-based buffer over-read. | 7.8 |
| 2017-10-05 | CVE-2017-15018 | Out-of-bounds Read vulnerability in Lame Project Lame LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k_34_4 in vbrquantize.c. | 5.5 |
| 2017-10-04 | CVE-2017-0812 | Out-of-bounds Read vulnerability in Google Android An elevation of privilege vulnerability in the Android media framework (audio hal). | 7.8 |
| 2017-10-02 | CVE-2017-14976 | Out-of-bounds Read vulnerability in multiple products The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a heap-based buffer over-read vulnerability if an out-of-bounds font dictionary index is encountered, which allows an attacker to launch a denial of service attack. | 7.5 |
| 2017-09-30 | CVE-2017-14939 | Out-of-bounds Read vulnerability in GNU Binutils 2.29 decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles a length calculation, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to read_1_byte. | 5.5 |
| 2017-09-30 | CVE-2017-14931 | Out-of-bounds Read vulnerability in Openexif Project Openexif 2.1.4 ExifImageFile::readDQT in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted JPEG file. | 5.5 |
| 2017-09-29 | CVE-2017-14860 | Out-of-bounds Read vulnerability in Exiv2 0.26 There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. | 5.5 |
| 2017-09-28 | CVE-2017-14795 | Out-of-bounds Read vulnerability in Libbpg Project Libbpg 0.9.7 The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with hls_pcm_sample in hevc.c in libavcodec in FFmpeg and put_pcm_var in hevcdsp_template.c in libavcodec in FFmpeg. | 8.8 |