| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2018-20482 |
2 Gnu, Debian |
2 Tar, Debian Linux |
2019-04-18 |
1.9 |
| GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service (infinite read loop in sparse_dump_region in sparse.c) by modifying a file that is supposed to be... |
| CVE-2019-10949 |
1 Deltaww |
1 Cncsoft Screeneditor |
2019-04-18 |
4.3 |
| Delta Industrial Automation CNCSoft, CNCSoft ScreenEditor Version 1.00.88 and prior. Multiple out-of-bounds read vulnerabilities may be exploited, allowing information disclosure due to a lack of user input validation for processing specially... |
| CVE-2018-17294 |
2 Canonical, Opensuse |
2 Ubuntu Linux, Leap |
2019-04-18 |
4.3 |
| The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file... |
| CVE-2019-5770 |
4 Google, Debian, Redhat and 1 more |
6 Chrome, Debian Linux, Enterprise Linux Desktop and 3 more |
2019-04-18 |
6.8 |
| Insufficient input validation in WebGL in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
| CVE-2019-7310 |
4 Freedesktop, Canonical, Debian and 1 more |
4 Poppler, Ubuntu Linux, Debian Linux and 1 more |
2019-04-18 |
6.8 |
| In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via... |
| CVE-2018-11897 |
1 Google |
1 Android |
2019-04-18 |
7.2 |
| In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing diag event after associating to a network out of bounds read occurs if ssid of the network joined is greater than max limit. |
| CVE-2019-7638 |
3 Libsdl, Debian, Opensuse |
3 Simple Directmedia Layer, Debian Linux, Leap |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c. |
| CVE-2019-7636 |
3 Libsdl, Debian, Opensuse |
3 Simple Directmedia Layer, Debian Linux, Leap |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c. |
| CVE-2019-7635 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c. |
| CVE-2019-7578 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c. |
| CVE-2019-7577 |
3 Libsdl, Debian, Fedoraproject |
3 Simple Directmedia Layer, Debian Linux, Fedora |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c. |
| CVE-2019-7576 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop). |
| CVE-2019-7574 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c. |
| CVE-2019-7573 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop). |
| CVE-2019-7572 |
2 Libsdl, Debian |
2 Simple Directmedia Layer, Debian Linux |
2019-04-17 |
6.8 |
| SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c. |
| CVE-2017-11714 |
2 Artifex, Debian |
2 Ghostscript, Debian Linux |
2019-04-17 |
6.8 |
| psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript... |
| CVE-2019-5520 |
1 Vmware |
1 Esxi |
2019-04-17 |
4.3 |
| VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates address an out-of-bounds read vulnerability.... |
| CVE-2017-14607 |
3 Imagemagick, Canonical, Debian |
3 Imagemagick, Ubuntu Linux, Debian Linux |
2019-04-17 |
5.8 |
| In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash. |
| CVE-2019-9024 |
4 Php, Debian, Canonical and 1 more |
4 Php, Debian Linux, Ubuntu Linux and 1 more |
2019-04-17 |
5.0 |
| An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpc_decode() can allow a hostile XMLRPC server to cause PHP to read memory outside of allocated areas in base64_decode_xmlrpc in... |
| CVE-2019-5516 |
1 Vmware |
1 Esxi |
2019-04-16 |
5.8 |
| VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates address an out-of-bounds vulnerability with the... |
