High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-02-28	CVE-2016-10207	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. network low complexity opensuse tigervnc CWE-119	7.5
2017-02-15	CVE-2016-8677	The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. network low complexity imagemagick opensuse debian	8.8
2017-02-15	CVE-2016-8866	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. network low complexity imagemagick opensuse CWE-119	8.8
2017-02-15	CVE-2016-8693	Double Free vulnerability in multiple products Double free vulnerability in the mem_close function in jas_stream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command. local low complexity jasper-project opensuse fedoraproject CWE-415	7.8
2017-02-15	CVE-2016-8689	Out-of-bounds Read vulnerability in multiple products The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a header in a 7zip archive. network low complexity libarchive opensuse CWE-125	7.5
2017-02-15	CVE-2016-8687	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename. network low complexity libarchive opensuse CWE-119	7.5
2017-02-15	CVE-2016-8684	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." local low complexity graphicsmagick opensuse debian CWE-119	7.8
2017-02-15	CVE-2016-8683	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." local low complexity graphicsmagick opensuse debian CWE-119	7.8
2017-02-15	CVE-2016-8682	Out-of-bounds Read vulnerability in multiple products The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. network low complexity graphicsmagick opensuse debian CWE-125	7.5
2017-02-06	CVE-2016-7800	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow. network low complexity graphicsmagick opensuse debian CWE-191	7.5