UBUNTU-CVE-2016-8630

The x86decodeinsn function in arch/x86/kvm/emulate.c in the Linux kernel before 4.8.7, when KVM is enabled, allows local users to cause a denial of service host OS crash via a certain use of a ModR/M byte in an undefined instruction...

Linux Kernel 'kvm/emulate.c' Denial of Service Vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'x86decodeinsn' function of the kvm/emulate.c file in versions of Linux kernel prior to 4.8.7. A local attacker could exploit...

p7zip null pointer backreference vulnerability

p7zip is a set of data compression and decompression software for Unix-like systems that is, 7z compression software under Win. A security vulnerability exists in the 'CInArchive::ReadAndDecodePackedStreams' function in the CPP/7zip/Archive/7z/7z/ 7zIn.cpp file in p7zip 16.02 and earlier versions...

Cross-site scripting vulnerability in wordpress plugin entity-decode-button

WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the Wordpress plugin entity-decode-button. The program fails to filter user-supplied input, allowing an attacker to...

PT-2016-7630 · Tarantool · Tarantool

Name of the Vulnerable Software and Affected Versions: Tarantool version 1.7.2.0-g8e92715 Description: The issue is related to an out-of-bounds array access in the xrow header decode function. A specially crafted packet can cause the function to access an element outside the bounds of a global...

An SQL injection vulnerability exists in the DBSHOP_0.9.3_Beta getQuery() function.

DBShop is an open source e-commerce online store system developed using endFramework. DBSHOP0.9.3Beta suffers from SQL injection vulnerability. Due to the /DBSHOP/module/Shopfront/src/Shopfront/Controller/GoodslistController.php at indexAction first through getQuery to get all the parameters,...

DEBIAN-CVE-2016-6525

Heap-based buffer overflow in the pdfloadmeshparams function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of service crash or execute arbitrary code via a large decode array...

CVE-2016-6525

Heap-based buffer overflow in the pdfloadmeshparams function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of service crash or execute arbitrary code via a large decode array...

CVE-2016-6525

Heap-based buffer overflow in the pdfloadmeshparams function in pdf/pdf-shade.c in MuPDF allows remote attackers to cause a denial of service crash or execute arbitrary code via a large decode array...

DEBIAN-CVE-2016-7163

Integer overflow in the opjpicreatedecode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write...

Internet Bug Bounty: integer overflow in base64_decode caused heap corruption

Please check: https://bugs.php.net/bug.php?id=72836...

libtiff: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c

REJECTED CVE This CVE has been rejected. This candidate is a duplicate of CVE-2016-5314. Note: All CVE users should reference CVE-2016-5314 instead of this candidate...

libxml2: Inappropriate fetch of entities content

XML external entity XXE vulnerability in the xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.4, when not in validating mode, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via unspecified vectors...

Silicon Graphics LibTiff 'PixarLogDecode' Function Denial of Service Vulnerability

Silicon Graphics LibTiff is a library for reading and writing TIFF files. A security vulnerability in the 'PixarLogDecode' function in Silicon Graphics LibTiff's tifpixarlog.c file allows remote attackers to exploit the vulnerability to construct special TIFF images that can be tricked into being...

Silicon Graphics LibTiff 'DumpModeDecode' Function Denial of Service Vulnerability

Silicon Graphics LibTiff is a library for reading and writing TIFF files. A security vulnerability in the 'DumpModeDecode' function of Silicon Graphics LibTiff allows remote attackers to exploit the vulnerability to construct special TIFF images that can be tricked into being parsed by the user,...

UBUNTU-CVE-2016-2479

The mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 mishandles a buffer count, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSyste...

DEBIAN-CVE-2016-5108

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted QuickTime IMA file...

UBUNTU-CVE-2016-5108

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted QuickTime IMA file...

Opencart的 json_decode 函数PHP远程代码执行漏洞

No description provided by source...

Xen has an unspecified vulnerability

Xen is an open source virtual machine monitor product developed at the University of Cambridge in the United Kingdom. A security vulnerability exists in Xen that can be exploited by an attacker to obtain sensitive information from uninitialized locations in the host OS kernel memory by not enabli...