| CVE |
Vendors |
Products |
Updated |
CVSS |
| CVE-2018-19059 |
2 Freedesktop, Canonical |
2 Poppler, Ubuntu Linux |
2018-12-07 |
4.3 |
| An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. |
| CVE-2018-19541 |
3 Jasper Project, Canonical, Suse |
4 Jasper, Ubuntu Linux, Linux Enterprise Desktop and 1 more |
2018-12-07 |
6.8 |
| An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jas_image_depalettize in libjasper/base/jas_image.c. |
| CVE-2018-18764 |
1 Cesanta |
1 Mongoose |
2018-12-07 |
6.4 |
| An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parse_mqtt getu16 call. A specially crafted MQTT SUBSCRIBE packet can cause an... |
| CVE-2018-18765 |
1 Cesanta |
1 Mongoose |
2018-12-07 |
6.4 |
| An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in mg_mqtt_next_subscribe_topic. A specially crafted MQTT SUBSCRIBE packet can cause... |
| CVE-2018-16842 |
3 Haxx, Canonical, Debian |
3 Curl, Ubuntu Linux, Debian Linux |
2018-12-07 |
6.4 |
| Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service. |
| CVE-2017-18315 |
1 Qualcomm |
1 Sd 600 Firmware |
2018-12-07 |
7.2 |
| Buffer over-read vulnerabilities in an older version of ASN.1 parser in Snapdragon Mobile in versions SD 600. |
| CVE-2018-18827 |
1 Libav |
1 Libav |
2018-12-06 |
4.3 |
| There exists a heap-based buffer over-read in ff_vc1_pred_dc in vc1_block.c in Libav 12.3, which allows attackers to cause a denial-of-service via a crafted aac file. |
| CVE-2018-18445 |
2 Canonical, Linux |
2 Ubuntu Linux, Linux Kernel |
2018-12-06 |
7.2 |
| In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles... |
| CVE-2018-18662 |
1 Artifex |
1 Mupdf |
2018-12-06 |
4.3 |
| There is an out-of-bounds read in fz_run_t3_glyph in fitz/font.c in Artifex MuPDF 1.14.0, as demonstrated by mutool. |
| CVE-2018-14798 |
1 Fujielectric |
1 Frenic Loader 3.3 Firmware |
2018-12-04 |
5.0 |
| Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. The program does not properly parse FNC files that may allow for information disclosure. |
| CVE-2018-15980 |
1 Adobe |
1 Photoshop Cc |
2018-12-04 |
5.0 |
| Adobe Photoshop CC versions 19.1.6 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. |
| CVE-2018-12366 |
4 Mozilla, Canonical, Debian and 1 more |
11 Firefox, Firefox Esr, Thunderbird and 8 more |
2018-12-03 |
4.3 |
| An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9,... |
| CVE-2018-14800 |
1 Deltaww |
1 Ispsoft |
2018-12-03 |
6.8 |
| Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which could allow execution of code under the context of the application. |
| CVE-2018-18481 |
1 Libopencad Project |
1 Libopencad |
2018-12-03 |
4.3 |
| A heap-based buffer over-read exists in libopencad 0.2.0 in the ReadCHAR function in lib/dwg/io.cpp, resulting in an application crash. |
| CVE-2018-18480 |
1 Libopencad Project |
1 Libopencad |
2018-12-03 |
4.3 |
| A heap-based buffer over-read exists in libopencad 0.2.0 in the ReadMCHAR function in lib/dwg/io.cpp, resulting in an application crash. |
| CVE-2018-10549 |
2 Php, Canonical |
2 Php, Ubuntu Linux |
2018-12-03 |
6.8 |
| An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exif_iif_add_value mishandles the case of a... |
| CVE-2017-8362 |
1 Libsndfile Project |
1 Libsndfile |
2018-12-03 |
4.3 |
| The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file. |
| CVE-2016-9104 |
1 Qemu |
1 Qemu |
2018-12-01 |
2.1 |
| Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset,... |
| CVE-2016-7155 |
1 Qemu |
1 Qemu |
2018-12-01 |
2.1 |
| hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page count for descriptor rings. |
| CVE-2016-5107 |
2 Canonical, Qemu |
2 Ubuntu Linux, Qemu |
2018-12-01 |
1.5 |
| The megasas_lookup_frame function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds read and crash) via unspecified vectors. |
