42.1

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-23	CVE-2016-10050	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file. local low complexity imagemagick opensuse CWE-119	7.8
2017-03-23	CVE-2016-6225	Inadequate Encryption Strength vulnerability in multiple products xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector (IV) for encryption, which makes it easier for context-dependent attackers to obtain sensitive information from encrypted backup files via a Chosen-Plaintext attack. network high complexity percona opensuse fedoraproject CWE-326	5.9
2017-03-20	CVE-2017-6318	Information Exposure vulnerability in multiple products saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANE_NET_CONTROL_OPTION packet. network low complexity opensuse sane-backends-project CWE-200	7.5
2017-03-20	CVE-2017-5930	Missing Authorization vulnerability in multiple products The AliasHandler component in PostfixAdmin before 3.0.2 allows remote authenticated domain admins to delete protected aliases via the delete parameter to delete.php, involving a missing permission check. network low complexity opensuse postfixadmin-project CWE-862	2.7
2017-03-17	CVE-2014-9854	Resource Management Errors vulnerability in multiple products coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." network low complexity imagemagick opensuse suse canonical CWE-399	7.5
2017-03-17	CVE-2014-9853	Resource Management Errors vulnerability in multiple products Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. local low complexity imagemagick suse novell opensuse-project opensuse canonical CWE-399	5.5
2017-03-17	CVE-2014-9852	Improper Control of Dynamically-Managed Code Resources vulnerability in multiple products distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. network low complexity imagemagick suse opensuse CWE-913 critical	9.8
2017-03-03	CVE-2016-10070	Out-of-bounds Read vulnerability in multiple products Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. local low complexity imagemagick opensuse CWE-125	5.5
2017-03-03	CVE-2016-10065	Improper Access Control vulnerability in multiple products The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. local low complexity imagemagick opensuse CWE-284	7.8
2017-03-03	CVE-2016-7972	Resource Management Errors vulnerability in multiple products The check_allocations function in libass/ass_shaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service (memory allocation failure) via unspecified vectors. network low complexity opensuse fedoraproject libass-project CWE-399	7.5