High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-26	CVE-2018-11490	Improper Validation of Array Index vulnerability in multiple products The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. network low complexity sam2p-project giflib-project debian canonical CWE-129	8.8
2018-05-23	CVE-2018-1125	Out-of-bounds Write vulnerability in multiple products procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. network low complexity procps-ng-project canonical debian opensuse CWE-787	7.5
2018-05-23	CVE-2018-1123	procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. network low complexity procps-ng-project canonical debian	7.5
2018-05-23	CVE-2018-1122	procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. local high complexity procps-ng-project canonical debian	7.0
2018-05-23	CVE-2018-1124	Integer Overflow or Wraparound vulnerability in multiple products procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. local low complexity procps-ng-project canonical debian redhat schneider-electric opensuse CWE-190	7.8
2018-05-22	CVE-2018-11362	Out-of-bounds Read vulnerability in multiple products In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. network low complexity wireshark debian CWE-125	7.5
2018-05-22	CVE-2018-11360	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash. network low complexity wireshark debian CWE-119	7.5
2018-05-22	CVE-2018-11359	NULL Pointer Dereference vulnerability in multiple products In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. network low complexity wireshark debian CWE-476	7.5
2018-05-22	CVE-2018-11358	Use After Free vulnerability in multiple products In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the Q.931 dissector could crash. network low complexity wireshark debian CWE-416	7.5
2018-05-22	CVE-2018-11357	Improper Input Validation vulnerability in multiple products In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. network low complexity wireshark debian CWE-20	7.5