Vulnerabilities > Debian > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-09 | CVE-2018-7536 | Incorrect Regular Expression vulnerability in multiple products An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. | 5.3 |
| 2018-03-09 | CVE-2016-9591 | Use After Free vulnerability in multiple products JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer. | 5.5 |
| 2018-03-09 | CVE-2018-7995 | Race Condition vulnerability in multiple products Race condition in the store_int_with_restart() function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (panic) by leveraging root access to write to the check_interval file in a /sys/devices/system/machinecheck/machinecheck<cpu number> directory. | 4.7 |
| 2018-03-09 | CVE-2018-1071 | zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. | 5.5 |
| 2018-03-08 | CVE-2018-7877 | Out-of-bounds Write vulnerability in multiple products There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for DOUBLE data. | 6.5 |
| 2018-03-08 | CVE-2018-7876 | Resource Exhaustion vulnerability in multiple products In libming 0.4.8, a memory exhaustion vulnerability was found in the function parseSWF_ACTIONRECORD in util/parser.c, which allows remote attackers to cause a denial of service via a crafted file. | 6.5 |
| 2018-03-08 | CVE-2018-7875 | Out-of-bounds Read vulnerability in multiple products There is a heap-based buffer over-read in the getString function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. | 6.5 |
| 2018-03-08 | CVE-2018-7874 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. | 6.5 |
| 2018-03-08 | CVE-2018-7873 | Out-of-bounds Write vulnerability in multiple products There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for INTEGER data. | 6.5 |
| 2018-03-08 | CVE-2018-7872 | NULL Pointer Dereference vulnerability in multiple products An invalid memory address dereference was discovered in the function getName in libming 0.4.8 for CONSTANT16 data. | 6.5 |