Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-07-23 CVE-2017-11575 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11573 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11572 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11570 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11569 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11568 Out-of-bounds Read vulnerability in Fontforge 20161012
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.
local
low complexity
fontforge CWE-125
7.8
7.8
2017-07-23 CVE-2017-11542 Out-of-bounds Read vulnerability in Tcpdump 4.9.0
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
network
low complexity
tcpdump CWE-125
critical
 9.8
9.8
2017-07-23 CVE-2017-11541 Out-of-bounds Read vulnerability in Tcpdump 4.9.0
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
network
low complexity
tcpdump CWE-125
critical
 9.8
9.8
2017-07-23 CVE-2017-11540 Out-of-bounds Read vulnerability in Imagemagick 7.0.61
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the GetPixelIndex() function, called from the WritePICONImage function in coders/xpm.c.
network
low complexity
imagemagick CWE-125
6.5
6.5
2017-07-23 CVE-2017-11535 Out-of-bounds Read vulnerability in Imagemagick 7.0.61
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.
network
low complexity
imagemagick CWE-125
6.5
6.5