High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-16	CVE-2017-3145	Use After Free vulnerability in multiple products BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. network low complexity isc redhat debian netapp juniper CWE-416	7.5
2019-01-16	CVE-2017-3144	Resource Exhaustion vulnerability in multiple products A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. network low complexity isc redhat canonical debian CWE-400	7.5
2019-01-16	CVE-2017-3137	Reachable Assertion vulnerability in multiple products Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion failure when processing a response in which records occurred in an unusual order. network low complexity isc redhat netapp debian CWE-617	7.5
2019-01-13	CVE-2019-6250	Integer Overflow or Wraparound vulnerability in multiple products A pointer overflow, with code execution, was discovered in ZeroMQ libzmq (aka 0MQ) 4.2.x and 4.3.x before 4.3.1. network low complexity zeromq debian CWE-190	8.8
2019-01-13	CVE-2019-6245	Out-of-bounds Write vulnerability in multiple products An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. network low complexity svgpp antigrain debian CWE-787	8.8
2019-01-11	CVE-2018-16865	An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. local low complexity systemd-project redhat debian canonical oracle	7.8
2019-01-11	CVE-2018-16864	An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. local low complexity systemd-project redhat debian canonical oracle	7.8
2019-01-11	CVE-2018-4180	In macOS High Sierra before 10.13.5, an issue existed in CUPS. local low complexity apple debian canonical	7.8
2019-01-11	CVE-2019-6128	Memory Leak vulnerability in multiple products The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb. network low complexity libtiff canonical opensuse debian CWE-401	8.8
2019-01-09	CVE-2018-6174	Integer Overflow or Wraparound vulnerability in multiple products Integer overflows in Swiftshader in Google Chrome prior to 68.0.3440.75 potentially allowed a remote attacker to execute arbitrary code via a crafted HTML page. network low complexity google debian redhat CWE-190	8.8