Vulnerabilities > Out-of-bounds Read
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-29 | CVE-2017-14860 | Out-of-bounds Read vulnerability in Exiv2 0.26 There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. | 5.5 |
| 2017-09-28 | CVE-2017-14795 | Out-of-bounds Read vulnerability in Libbpg Project Libbpg 0.9.7 The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with hls_pcm_sample in hevc.c in libavcodec in FFmpeg and put_pcm_var in hevcdsp_template.c in libavcodec in FFmpeg. | 8.8 |
| 2017-09-25 | CVE-2017-14733 | Out-of-bounds Read vulnerability in multiple products ReadRLEImage in coders/rle.c in GraphicsMagick 1.3.26 mishandles RLE headers that specify too few colors, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | 6.5 |
| 2017-09-25 | CVE-2017-14731 | Out-of-bounds Read vulnerability in Libofx Project Libofx 0.9.12 ofx_proc_file in ofx_preproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an ofxdump call. | 6.5 |
| 2017-09-25 | CVE-2015-5327 | Out-of-bounds Read vulnerability in Linux Kernel 4.3 Out-of-bounds memory read in the x509_decode_time function in x509_cert_parser.c in Linux kernels 4.3-rc1 and after. | 6.5 |
| 2017-09-21 | CVE-2017-9283 | Out-of-bounds Read vulnerability in Microfocus Visibroker 8.5 An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. | 9.8 |
| 2017-09-21 | CVE-2017-7544 | Out-of-bounds Read vulnerability in Libexif Project Libexif libexif through 0.6.21 is vulnerable to out-of-bounds heap read vulnerability in exif_data_save_data_entry function in libexif/exif-data.c caused by improper length computation of the allocated data of an ExifMnote entry which can cause denial-of-service or possibly information disclosure. | 9.1 |
| 2017-09-21 | CVE-2017-14646 | Out-of-bounds Read vulnerability in Axiosys Bento4 1.5.0617 The AP4_AvccAtom and AP4_HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp. | 7.5 |
| 2017-09-21 | CVE-2017-14645 | Out-of-bounds Read vulnerability in Bento4 1.5.0617 A heap-based buffer over-read was discovered in AP4_BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. | 6.5 |
| 2017-09-21 | CVE-2017-14643 | Out-of-bounds Read vulnerability in Bento4 1.5.0617 The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4_BytesToUInt32BE in Core/Ap4Utils.h. | 6.5 |