CVE-2016-9082

Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...

CVE-2016-9082

Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...

CVE-2016-9082

CVE-2016-9082 affects the Cairo graphics library, specifically the write_png function in Cairo 1.14.6. An integer overflow can be triggered by a large SVG file, leading to a denial of service via an invalid pointer dereference. The provided sources confirm the vulnerability exists in Cairo 1.14.6...

Denial Of Service (DoS) Via Invalid Free

libplist is vulnerable to denial of service DoS attacks. The vulnerability exists as it is possible to reach a state where plistfree is used to free an invalid pointer...

CVE-2016-7914

The assocarrayinsertintoterminalnode function in lib/assocarray.c in the Linux kernel before 4.5.3 does not check whether a slot is a leaf, which allows local users to obtain sensitive information from kernel memory or cause a denial of service invalid pointer dereference and out-of-bounds read v...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. The NVIDIA Windows GPU Display Driver local elevation of privilege vulnerability stems from the program failing to properly validate pointers. A local attacker could use this...

CVE-2016-9082

Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...

Amazon Linux AMI : php70 (ALAS-2016-754)

ext/mysqlnd/mysqlndwireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNEDFLAG flag, which allows remote MySQL servers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted field metadata...

Linux kernel denial of service vulnerability (CNVD-2016-09458)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the arch/arm64/kernel/perfevent.c file in versions of Linux kernel prior to 4.1 on arm64-based platforms. A local attacker can...

Amazon Linux AMI : php56 (ALAS-2016-753)

ext/standard/varunserializer.re in PHP before 5.6.26 mishandles object-deserialization failures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via an unserialize call that references a partially constructed object...

Medium: php70

Issue Overview: ext/mysqlnd/mysqlndwireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNEDFLAG flag, which allows remote MySQL servers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted...

CVE-2016-6692

drivers/video/msm/mdss/mdssmdppp.c in the Qualcomm MDSS driver in Android before 2016-10-05 allows attackers to cause a denial of service invalid pointer access or possibly have unspecified other impact via unknown vectors, aka Qualcomm internal bug CR 1004933...

CVE-2016-6692

drivers/video/msm/mdss/mdssmdppp.c in the Qualcomm MDSS driver in Android before 2016-10-05 allows attackers to cause a denial of service invalid pointer access or possibly have unspecified other impact via unknown vectors, aka Qualcomm internal bug CR 1004933...

CVE-2015-8955

arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer dereference via vectors involving events that are mishandled during a span of multiple HW PMUs...

CVE-2016-6692

drivers/video/msm/mdss/mdssmdppp.c in the Qualcomm MDSS driver in Android before 2016-10-05 allows attackers to cause a denial of service invalid pointer access or possibly have unspecified other impact via unknown vectors, aka Qualcomm internal bug CR 1004933...

CVE-2015-8955

arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer dereference via vectors involving events that are mishandled during a span of multiple HW PMUs...

Updated freerdp packages fix security vulnerabilities

FreeRDP could crash due to a NULL or invalid pointer CVE-2013-4118, CVE-2013-4119...

Google Chrome Denial of Service Vulnerability (CNVD-2016-08230)

Google Chrome is a web browser developed by the American company Google Google. A denial of service vulnerability exists in Google Chrome versions prior to 53.0.2785.113. A remote attacker can exploit this vulnerability by accessing the renderer process to cause a denial of service invalid pointe...

Microsoft Office PowerPoint 2010 - Invalid Pointer Reference

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=866 The following crash was observed in Microsoft PowerPoint 2010 running under Windows 7 x86 with application verifier enabled. File versions are: mso.dll: 14.0.7166.5000...

Microsoft Office PowerPoint 2010 - Invalid Pointer Reference

Microsoft Office PowerPoint 2010 - Invalid Pointer Reference Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=866 The following crash was observed in Microsoft PowerPoint 2010 running under Windows 7 x86 with application verifier enabled. File versions are: mso.dll: 14.0.7166.500...