42.1

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-03	CVE-2016-7969	Out-of-bounds Read vulnerability in multiple products The wrap_lines_smart function in ass_render.c in libass before 0.13.4 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors, related to "0/3 line wrapping equalization." network low complexity opensuse fedoraproject libass-project CWE-125	7.5
2017-03-02	CVE-2016-10064	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. local low complexity imagemagick opensuse CWE-119	7.8
2017-03-01	CVE-2016-9830	Improper Input Validation vulnerability in multiple products The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image. local low complexity graphicsmagick debian opensuse CWE-20	5.5
2017-02-28	CVE-2016-10207	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. network low complexity opensuse tigervnc CWE-119	7.5
2017-02-15	CVE-2016-8866	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. network low complexity imagemagick opensuse CWE-119	8.8
2017-02-06	CVE-2016-7800	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow. network low complexity graphicsmagick opensuse debian CWE-191	7.5
2017-02-06	CVE-2016-7449	Out-of-bounds Read vulnerability in multiple products The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string. network low complexity graphicsmagick debian opensuse CWE-125	7.5
2017-02-06	CVE-2016-7448	Resource Management Errors vulnerability in multiple products The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service (CPU consumption or large memory allocations) via vectors involving the header information and the file size. network low complexity graphicsmagick debian opensuse CWE-399	7.5
2017-02-06	CVE-2016-7447	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors. network low complexity graphicsmagick debian opensuse CWE-119 critical	9.8
2017-02-06	CVE-2016-7446	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. network low complexity graphicsmagick debian opensuse CWE-119 critical	9.8