Leap

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-03	CVE-2016-10065	Improper Access Control vulnerability in multiple products The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. local low complexity imagemagick opensuse CWE-284	7.8
2017-03-03	CVE-2016-7972	Resource Management Errors vulnerability in multiple products The check_allocations function in libass/ass_shaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service (memory allocation failure) via unspecified vectors. network low complexity opensuse fedoraproject libass-project CWE-399	7.5
2017-03-03	CVE-2016-7969	Out-of-bounds Read vulnerability in multiple products The wrap_lines_smart function in ass_render.c in libass before 0.13.4 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors, related to "0/3 line wrapping equalization." network low complexity opensuse fedoraproject libass-project CWE-125	7.5
2017-03-02	CVE-2016-10068	Improper Input Validation vulnerability in multiple products The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. local low complexity imagemagick opensuse-project opensuse CWE-20	5.5
2017-03-02	CVE-2016-10064	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. local low complexity imagemagick opensuse CWE-119	7.8
2017-03-01	CVE-2016-9830	Improper Input Validation vulnerability in multiple products The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image. local low complexity graphicsmagick debian opensuse CWE-20	5.5
2017-02-28	CVE-2016-10207	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. network low complexity opensuse tigervnc CWE-119	7.5
2017-02-15	CVE-2016-8866	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. network low complexity imagemagick opensuse CWE-119	8.8
2017-02-15	CVE-2016-8689	Out-of-bounds Read vulnerability in multiple products The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a header in a 7zip archive. network low complexity libarchive opensuse CWE-125	7.5
2017-02-15	CVE-2016-8688	Out-of-bounds Read vulnerability in multiple products The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote attackers to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtree.c. local low complexity libarchive opensuse CWE-125	5.5