High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-13	CVE-2015-8619	Out-of-bounds Write vulnerability in multiple products The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash). network low complexity qemu debian CWE-787	7.5
2017-04-13	CVE-2015-8567	Memory Leak vulnerability in multiple products Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption). network low complexity qemu canonical debian suse opensuse fedoraproject CWE-401	7.7
2017-04-13	CVE-2012-6697	Resource Management Errors vulnerability in multiple products InspIRCd before 2.0.7 allows remote attackers to cause a denial of service (infinite loop). network low complexity inspire-ircd debian CWE-399	7.5
2017-04-12	CVE-2017-7747	Improper Input Validation vulnerability in multiple products In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. network low complexity wireshark debian CWE-20	7.5
2017-04-12	CVE-2017-7746	Infinite Loop vulnerability in multiple products In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. network low complexity wireshark debian CWE-835	7.5
2017-04-12	CVE-2017-7703	Injection vulnerability in multiple products In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. network low complexity wireshark debian CWE-74	7.5
2017-04-11	CVE-2015-8666	Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in QEMU, when built with the Q35-chipset-based PC system emulator. local low complexity qemu debian CWE-787	7.9
2017-04-11	CVE-2016-4483	Deserialization of Untrusted Data vulnerability in multiple products The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization. network low complexity xmlsoft debian oracle CWE-502	7.5
2017-04-10	CVE-2016-1516	Double Free vulnerability in multiple products OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code. network low complexity opencv debian CWE-415	8.8
2017-03-28	CVE-2017-6964	Unchecked Return Value vulnerability in multiple products dmcrypt-get-device, as shipped in the eject package of Debian and Ubuntu, does not check the return value of the (1) setuid or (2) setgid function, which might cause dmcrypt-get-device to execute code, which was intended to run as an unprivileged user, as root. local low complexity canonical debian CWE-252	7.8