Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2017-08-07 CVE-2017-12604 Out-of-bounds Write vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread.
network
low complexity
opencv debian CWE-787
8.8
2017-08-07 CVE-2017-12603 Out-of-bounds Write vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case.
network
low complexity
opencv debian CWE-787
8.8
2017-08-07 CVE-2017-12601 Classic Buffer Overflow vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmt_bmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy test case.
network
low complexity
opencv debian CWE-120
8.8
2017-08-07 CVE-2017-12599 Out-of-bounds Read vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the function icvCvt_BGRA2BGR_8u_C4C3R when reading an image file by using cv::imread.
network
low complexity
opencv debian CWE-125
8.8
2017-08-07 CVE-2017-12598 Out-of-bounds Read vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case.
network
low complexity
opencv debian CWE-125
8.8
2017-08-07 CVE-2017-12597 Out-of-bounds Write vulnerability in multiple products
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread.
network
low complexity
opencv debian CWE-787
8.8
2017-08-02 CVE-2017-10664 qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt.
network
low complexity
qemu debian redhat
7.5
2017-07-28 CVE-2017-11714 Out-of-bounds Read vulnerability in multiple products
psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document, related to an out-of-bounds read in the igc_reloc_struct_ptr function in psi/igc.c.
local
low complexity
artifex debian CWE-125
7.8
2017-07-27 CVE-2016-8743 Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers.
network
low complexity
apache netapp debian redhat
7.5
2017-07-26 CVE-2017-9835 Integer Overflow or Wraparound vulnerability in multiple products
The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.
local
low complexity
artifex debian CWE-190
7.8