Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2017-12937 Out-of-bounds Read vulnerability in multiple products
The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has a colormap heap-based buffer over-read.
network
low complexity
graphicsmagick debian CWE-125
8.8
2017-08-18 CVE-2017-12935 Out-of-bounds Read vulnerability in multiple products
The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c.
network
low complexity
graphicsmagick debian CWE-125
8.8
2017-08-18 CVE-2017-12933 Out-of-bounds Read vulnerability in PHP
The finish_nested_data function in ext/standard/var_unserializer.re in PHP before 5.6.31, 7.0.x before 7.0.21, and 7.1.x before 7.1.7 is prone to a buffer over-read while unserializing untrusted data.
network
low complexity
php CWE-125
critical
9.8
2017-08-17 CVE-2017-12445 Out-of-bounds Read vulnerability in Minidjvu Project Minidjvu 0.8
The JB2BitmapCoder::code_row_by_refinement function in jb2/bmpcoder.cpp in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.
network
low complexity
minidjvu-project CWE-125
6.5
2017-08-17 CVE-2017-12444 Out-of-bounds Read vulnerability in Minidjvu Project Minidjvu 0.8
The mdjvu_bitmap_get_bounding_box function in base/4bitmap.c in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.
network
low complexity
minidjvu-project CWE-125
6.5
2017-08-17 CVE-2017-12443 Out-of-bounds Read vulnerability in Minidjvu Project Minidjvu 0.8
The mdjvu_bitmap_pack_row function in base/4bitmap.c in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.
network
low complexity
minidjvu-project CWE-125
6.5
2017-08-17 CVE-2017-12442 Out-of-bounds Read vulnerability in Minidjvu Project Minidjvu 0.8
The row_is_empty function in base/4bitmap.c:272 in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.
network
low complexity
minidjvu-project CWE-125
6.5
2017-08-17 CVE-2017-12441 Out-of-bounds Read vulnerability in Minidjvu Project Minidjvu 0.8
The row_is_empty function in base/4bitmap.c:274 in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.
network
low complexity
minidjvu-project CWE-125
6.5
2017-08-17 CVE-2017-11664 Out-of-bounds Read vulnerability in Mindwerks Wildmidi 0.4.2
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
network
low complexity
mindwerks CWE-125
6.5
2017-08-17 CVE-2017-11663 Out-of-bounds Read vulnerability in Mindwerks Wildmidi 0.4.2
The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
network
low complexity
mindwerks CWE-125
6.5