Vulnerabilities > Libevent Project > Libevent > High

DATE CVE VULNERABILITY TITLE RISK
2017-03-15 CVE-2016-10197 Out-of-bounds Read vulnerability in multiple products
The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.
network
low complexity
debian libevent-project CWE-125
7.5
7.5
2017-03-15 CVE-2016-10196 Out-of-bounds Write vulnerability in multiple products
Stack-based buffer overflow in the evutil_parse_sockaddr_port function in evutil.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (segmentation fault) via vectors involving a long string in brackets in the ip_as_string argument.
network
low complexity
debian libevent-project mozilla CWE-787
7.5
7.5