High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-03	CVE-2016-7969	Out-of-bounds Read vulnerability in multiple products The wrap_lines_smart function in ass_render.c in libass before 0.13.4 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors, related to "0/3 line wrapping equalization." network low complexity opensuse fedoraproject libass-project CWE-125	7.5
2017-03-02	CVE-2016-10064	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. local low complexity imagemagick opensuse CWE-119	7.8
2017-02-28	CVE-2016-10207	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. network low complexity opensuse tigervnc CWE-119	7.5
2017-02-15	CVE-2016-8866	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. network low complexity imagemagick opensuse CWE-119	8.8
2017-02-15	CVE-2016-8689	Out-of-bounds Read vulnerability in multiple products The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a header in a 7zip archive. network low complexity libarchive opensuse CWE-125	7.5
2017-02-15	CVE-2016-8687	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename. network low complexity libarchive opensuse CWE-119	7.5
2017-02-06	CVE-2016-7800	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow. network low complexity graphicsmagick opensuse debian CWE-191	7.5
2017-02-06	CVE-2016-7449	Out-of-bounds Read vulnerability in multiple products The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string. network low complexity graphicsmagick debian opensuse CWE-125	7.5
2017-02-06	CVE-2016-7448	Resource Management Errors vulnerability in multiple products The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service (CPU consumption or large memory allocations) via vectors involving the header information and the file size. network low complexity graphicsmagick debian opensuse CWE-399	7.5
2017-02-03	CVE-2016-10165	Out-of-bounds Read vulnerability in multiple products The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read. local low complexity littlecms debian canonical opensuse redhat netapp CWE-125	7.1