CVE-2016-5824

CVE-2016-5824 affects the libical iCalendar library (libical 1.0) with a use-after-free that can lead to a denial of service via a crafted ICS file. Multiple connected sources corroborate this as a vulnerability in libical, with downstream advisories recommending upgrading to newer libical releas...

CVE-2016-9584

CVE-2016-9584 affects libical, where parsing ICS files can trigger a use-after-free in the library, potentially leading to denial of service and heap memory exposure. Connected advisories and Nessus plugins consistently describe libical as the vulnerable component and reference the same use-after...

CVE-2016-5826

CVE-2016-5826 is a vulnerability in libical where the function parser_get_next_char in versions 0.47 and 1.0 allows a remote attacker to trigger a denial of service via an out-of-bounds heap read when processing a crafted ICS file with icalparser_parse_string. Affected software is libical; availa...

CVE-2016-5823

CVE-2016-5823 : The icalproperty_new_clone function in libical 0.47 and 1.0 is vulnerable to a crafted ICS file that can trigger a use-after-free, leading to a denial of service. The provided documentation explicitly lists this as the affecting condition and impact. No additional details on root ...

CVE-2016-5825

CVE-2016-5825 affects libical (component icalparser_parse_string) with out-of-bounds heap read via crafted ICS files. Impacted versions include libical 0.47 and 1.0; vendor advisories (e.g., Red Hat, SUSE) reference unpatched status or pending fixes. Remediation: update to patched libical version...

CVE-2016-5827

CVE-2016-5827 affects the libical project, specifically the icaltime_from_string path in libical 0.47 and 1.0. a crafted input to icalparser_parse_string can trigger an out-of-bounds heap read, leading to a remote denial of service. The connected OpenSUSE advisory notes that fixes exist in libica...