Vulnerabilities > Opensuse
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-28 | CVE-2016-10207 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. | 7.5 |
| 2017-02-15 | CVE-2016-8677 | The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. | 8.8 |
| 2017-02-15 | CVE-2016-8866 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. | 8.8 |
| 2017-02-15 | CVE-2016-8693 | Double Free vulnerability in multiple products Double free vulnerability in the mem_close function in jas_stream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command. | 7.8 |
| 2017-02-15 | CVE-2016-8689 | Out-of-bounds Read vulnerability in multiple products The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a header in a 7zip archive. | 7.5 |
| 2017-02-15 | CVE-2016-8688 | Out-of-bounds Read vulnerability in multiple products The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote attackers to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtree.c. | 5.5 |
| 2017-02-15 | CVE-2016-8687 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename. | 7.5 |
| 2017-02-15 | CVE-2016-8684 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." | 7.8 |
| 2017-02-15 | CVE-2016-8683 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." | 7.8 |
| 2017-02-15 | CVE-2016-8682 | Out-of-bounds Read vulnerability in multiple products The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. | 7.5 |