Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2017-03-01 CVE-2017-5974 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
local
low complexity
zziplib-project debian CWE-119
5.5
5.5
2017-03-01 CVE-2016-9559 NULL Pointer Dereference vulnerability in multiple products
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image.
network
low complexity
imagemagick debian CWE-476
6.5
6.5
2017-02-27 CVE-2017-5946 Path Traversal vulnerability in multiple products
The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a directory traversal vulnerability.
network
low complexity
rubyzip-project debian CWE-22
critical
 9.8
9.8
2017-02-24 CVE-2017-5669 The do_shmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget and shmat system calls in a privileged context.
local
low complexity
linux debian canonical
7.8
7.8
2017-02-24 CVE-2017-6310 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in tnef before 1.4.13.
local
low complexity
tnef-project debian CWE-787
7.8
7.8
2017-02-24 CVE-2017-6309 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in tnef before 1.4.13.
local
low complexity
tnef-project debian CWE-787
7.8
7.8
2017-02-24 CVE-2017-6308 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in tnef before 1.4.13.
local
low complexity
tnef-project debian CWE-190
7.8
7.8
2017-02-24 CVE-2017-6307 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in tnef before 1.4.13.
local
low complexity
tnef-project debian CWE-787
7.8
7.8
2017-02-24 CVE-2017-6306 Path Traversal vulnerability in multiple products
An issue was discovered in ytnef before 1.9.1.
local
low complexity
ytnef-project debian CWE-22
7.8
7.8
2017-02-24 CVE-2017-6305 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in ytnef before 1.9.1.
local
low complexity
ytnef-project debian CWE-787
7.8
7.8