CVE-2017-11018

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, array access out of bounds may occur in the camera driver in the kernel...

CVE-2017-8256

In all Qualcomm products with Android releases from CAF using the Linux kernel, array out of bounds access can occur if userspace sends more than 16 multicast addresses...

CVE-2017-11719

The dnxhddecodeheader function in libavcodec/dnxhddec.c in FFmpeg 3.0 through 3.3.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a crafted DNxHD file...

CVE-2017-11719

The dnxhddecodeheader function in libavcodec/dnxhddec.c in FFmpeg 3.0 through 3.3.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a crafted DNxHD file...

CVE-2017-11399

Integer overflow in the apedecodeframe function in libavcodec/apedec.c in FFmpeg 2.4 through 3.3.2 allows remote attackers to cause a denial of service out-of-array access and application crash or possibly have unspecified other impact via a crafted APE file...

CVE-2017-11399

CVE-2017-11399 : FFmpeg (versions 2.4–3.3.2) is affected by an integer overflow in the ape_decode_frame function of libavcodec/apedec.c, which can be triggered by a crafted APE file to cause a denial of service (out-of-bounds access and crash) or potentially other impact. The connected advisories...

CVE-2015-2800

The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service device restart via vectors involving authentication, whi...

CVE-2017-8831

The saa7164busget function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service out-of-bounds array access or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch"...

CVE-2017-5956

The vrenddrawvbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors involving vertextbufferindex...

CVE-2017-5956

The vrenddrawvbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors involving vertextbufferindex...

CVE-2017-5956

The vrenddrawvbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors involving vertextbufferindex...

CVE-2017-5956

The CVE-2017-5956 issue affects virglrenderer’s vrend_draw_vbo function (pre-0.6.0). Local guest OS users can trigger a denial of service via out-of-bounds access involving vertext_buffer_index, potentially crashing the QEMU process. Public details consistently associate this with virglrenderer p...

CVE-2017-5956

The vrenddrawvbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors involving vertextbufferindex...

CVE-2017-5956

The vrenddrawvbo function in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors involving vertextbufferindex...

CVE-2017-5580

CVE-2017-5580 affects virglrenderer prior to version 0.6.0, where the parse_instruction path in tgsi_text.c can trigger an out-of-bounds access in a crafted texture instruction. This results in a denial-of-service via process crash, with local guest OS users as the exploit vector. Public document...

CVE-2017-5580

The parseinstruction function in gallium/auxiliary/tgsi/tgsitext.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and process crash via a crafted texture instruction...

CVE-2017-5994

Heap-based buffer overflow in the vrendcreatevertexelementsstate function in vrendrenderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and crash via the numelements parameter...

CVE-2017-6209

Stack-based buffer overflow in the parseidentifier function in tgsitext.c in the TGSI auxiliary module in the Gallium driver in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors related to parsing...

Stack overflow

Stack-based buffer overflow in the parseidentifier function in tgsitext.c in the TGSI auxiliary module in the Gallium driver in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and QEMU process crash via vectors related to parsing...

CVE-2017-5994

Heap-based buffer overflow in the vrendcreatevertexelementsstate function in vrendrenderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service out-of-bounds array access and crash via the numelements parameter...