Vulnerabilities > Debian > Debian Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-16 | CVE-2017-5667 | Out-of-bounds Read vulnerability in multiple products The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds heap access and crash) or execute arbitrary code on the QEMU host via vectors involving the data transfer length. | 6.5 |
| 2017-03-16 | CVE-2016-10247 | Out-of-bounds Write vulnerability in multiple products Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. | 5.5 |
| 2017-03-16 | CVE-2016-10246 | Out-of-bounds Write vulnerability in multiple products Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. | 5.5 |
| 2017-03-15 | CVE-2016-7103 | Cross-site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function. | 6.1 |
| 2017-03-15 | CVE-2017-5579 | Memory Leak vulnerability in multiple products Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. | 6.5 |
| 2017-03-15 | CVE-2017-5526 | Memory Leak vulnerability in multiple products Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. | 6.5 |
| 2017-03-15 | CVE-2017-5525 | Memory Leak vulnerability in multiple products Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. | 6.5 |
| 2017-03-15 | CVE-2016-10197 | Out-of-bounds Read vulnerability in multiple products The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname. | 5.0 |
| 2017-03-15 | CVE-2016-10196 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in the evutil_parse_sockaddr_port function in evutil.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (segmentation fault) via vectors involving a long string in brackets in the ip_as_string argument. | 5.0 |
| 2017-03-15 | CVE-2016-10155 | Memory Leak vulnerability in multiple products Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations. | 6.0 |