Vulnerabilities > Debian > Debian Linux > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-01-13 CVE-2016-9811 Out-of-bounds Read vulnerability in multiple products
The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ico file.
local
high complexity
gstreamer fedoraproject debian redhat CWE-125
4.7
4.7
2017-01-06 CVE-2016-2375 Out-of-bounds Read vulnerability in multiple products
An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin.
network
low complexity
pidgin canonical debian CWE-125
5.3
5.3
2017-01-06 CVE-2016-2373 Out-of-bounds Read vulnerability in multiple products
A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-125
5.9
5.9
2017-01-06 CVE-2016-2372 Out-of-bounds Read vulnerability in multiple products
An information leak exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-125
5.9
5.9
2017-01-06 CVE-2016-2370 Out-of-bounds Read vulnerability in multiple products
A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-125
5.9
5.9
2017-01-06 CVE-2016-2369 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-476
5.9
5.9
2017-01-06 CVE-2016-2367 Out-of-bounds Read vulnerability in multiple products
An information leak exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-125
5.9
5.9
2017-01-06 CVE-2016-2366 Out-of-bounds Read vulnerability in multiple products
A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-125
5.9
5.9
2017-01-06 CVE-2016-2365 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-476
5.9
5.9
2016-12-29 CVE-2016-9916 Memory Leak vulnerability in multiple products
Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in the proxy backend.
local
low complexity
qemu debian CWE-401
6.5
6.5