Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-03-21 CVE-2017-7208 Out-of-bounds Read vulnerability in Libav 9.21
The decode_residual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file.
network
libav CWE-125
5.8
2017-03-21 CVE-2017-7206 Out-of-bounds Read vulnerability in Libav 9.21
The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file.
network
libav CWE-125
5.8
2017-03-20 CVE-2017-6829 Out-of-bounds Read vulnerability in Audiofile 0.3.6
The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
network
audiofile CWE-125
4.3
2017-03-20 CVE-2017-5956 Out-of-bounds Read vulnerability in Virglrenderer Project Virglrenderer 0.2.0/0.4.0/0.5.0
The vrend_draw_vbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors involving vertext_buffer_index.
local
low complexity
virglrenderer-project CWE-125
2.1
2017-03-20 CVE-2015-8984 Out-of-bounds Read vulnerability in GNU Glibc
The fnmatch function in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash) via a malformed pattern, which triggers an out-of-bounds read.
network
high complexity
gnu CWE-125
5.9
2017-03-20 CVE-2014-9844 Out-of-bounds Read vulnerability in multiple products
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
4.3
2017-03-17 CVE-2017-6969 Out-of-bounds Read vulnerability in GNU Binutils 2.28
readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries.
network
low complexity
gnu CWE-125
6.4
2017-03-16 CVE-2017-5667 Out-of-bounds Read vulnerability in multiple products
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds heap access and crash) or execute arbitrary code on the QEMU host via vectors involving the data transfer length.
local
low complexity
qemu debian CWE-125
6.5
2017-03-15 CVE-2015-8897 Out-of-bounds Read vulnerability in Imagemagick
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
4.3
2017-03-15 CVE-2017-6430 Out-of-bounds Read vulnerability in Ettercap-Project Ettercap
The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.
4.3