Vulnerabilities > Out-of-bounds Read
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-12 | CVE-2016-9433 | Out-of-bounds Read vulnerability in Tats W3M An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. | 6.5 |
| 2016-12-08 | CVE-2016-9918 | Out-of-bounds Read vulnerability in Bluez Project Bluez 5.42 In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. | 7.5 |
| 2016-12-03 | CVE-2016-9803 | Out-of-bounds Read vulnerability in Bluez 5.42 In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" function in "tools/parser/hci.c" source file. | 5.3 |
| 2016-12-03 | CVE-2016-9797 | Out-of-bounds Read vulnerability in Bluez 5.42 In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. | 5.3 |
| 2016-11-28 | CVE-2016-9555 | Out-of-bounds Read vulnerability in Linux Kernel The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data. | 9.8 |
| 2016-11-22 | CVE-2016-9539 | Out-of-bounds Read vulnerability in Libtiff 4.0.6 tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer(). | 9.8 |
| 2016-11-16 | CVE-2016-7917 | Out-of-bounds Read vulnerability in Linux Kernel The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability. | 5.0 |
| 2016-11-16 | CVE-2016-7915 | Out-of-bounds Read vulnerability in Linux Kernel The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) by connecting a device, as demonstrated by a Logitech DJ receiver. | 5.5 |
| 2016-10-31 | CVE-2016-8878 | Out-of-bounds Read vulnerability in Foxitsoftware Phantompdf and Reader Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted BMP image embedded in the XFA stream in a PDF document, aka "Data from Faulting Address may be used as a return value starting at FOXITREADER." | 8.8 |
| 2016-10-31 | CVE-2016-8876 | Out-of-bounds Read vulnerability in Foxitsoftware Phantompdf and Reader Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted TIFF image embedded in the XFA stream in a PDF document, aka "Read Access Violation starting at FoxitReader." | 7.5 |