Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-05-18 CVE-2017-9058 Out-of-bounds Read vulnerability in multiple products
In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c.
network
low complexity
ytnef-project canonical CWE-125
critical
9.8
2017-05-18 CVE-2017-9055 Out-of-bounds Read vulnerability in Libdwarf Project Libdwarf 20170321
An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21.
network
low complexity
libdwarf-project CWE-125
critical
9.8
2017-05-18 CVE-2017-9054 Out-of-bounds Read vulnerability in Libdwarf Project Libdwarf 20170321
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21.
network
low complexity
libdwarf-project CWE-125
critical
9.8
2017-05-18 CVE-2017-9053 Out-of-bounds Read vulnerability in Libdwarf Project Libdwarf 20170321
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21.
network
low complexity
libdwarf-project CWE-125
critical
9.1
2017-05-18 CVE-2017-9052 Out-of-bounds Read vulnerability in Libdwarf Project Libdwarf 20170321
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21.
network
low complexity
libdwarf-project CWE-125
critical
9.8
2017-05-18 CVE-2017-9050 Out-of-bounds Read vulnerability in Xmlsoft Libxml2 2.9.4
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c.
network
low complexity
xmlsoft CWE-125
7.5
2017-05-18 CVE-2017-9049 Out-of-bounds Read vulnerability in Xmlsoft Libxml2 2.9.4
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c.
network
low complexity
xmlsoft CWE-125
7.5
2017-05-18 CVE-2017-9044 Out-of-bounds Read vulnerability in GNU Binutils 2.28
The print_symbol_for_build_attribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted ELF file.
local
low complexity
gnu CWE-125
5.5
2017-05-18 CVE-2017-9041 Out-of-bounds Read vulnerability in GNU Binutils 2.28
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_specific function in readelf.c.
local
low complexity
gnu CWE-125
5.5
2017-05-18 CVE-2017-9038 Out-of-bounds Read vulnerability in GNU Binutils 2.28
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in readelf.c, and ARM unwind information that contains invalid word offsets.
local
low complexity
gnu CWE-125
5.5