Vulnerabilities (CVE)

CWE filter

CWE-190

Filter

916 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-11879 1 Qualcomm 1 Sd 845 Firmware 2018-12-07 7.2
When the buffer length passed is very large, bounds check could be bypassed leading to potential buffer overwrite in Snapdragon Mobile in version SD 845
CVE-2018-11865 1 Qualcomm 24 Mdm9206 Firmware, Mdm9607 Firmware, Mdm9650 Firmware and 21 more 2018-12-07 7.2
Integer overflow may happen when calculating an internal structure size due to lack of validation of the input length in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD...
CVE-2018-11866 1 Qualcomm 25 Ipq8074 Firmware, Mdm9206 Firmware, Mdm9607 Firmware and 22 more 2018-12-07 7.2
Integer overflow may happen in WLAN when calculating an internal structure size due to lack of validation of the input length in Snapdragon Mobile, Snapdragon Wear in version IPQ8074, MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD...
CVE-2018-18650 1 Xpdfreader 1 Xpdf 2018-12-06 4.3
An issue was discovered in Xpdf 4.00. XRef::readXRefStream in XRef.cc allows attackers to launch a denial of service (Integer Overflow) via a crafted /Size value in a pdf file, as demonstrated by pdftohtml. This is mainly caused by the program...
CVE-2018-12361 3 Mozilla, Canonical, Debian 5 Firefox, Firefox Esr, Thunderbird and 2 more 2018-12-06 6.8
An integer overflow can occur in the SwizzleData code while calculating buffer sizes. The overflowed value is used for subsequent graphics computations when their inputs are not sanitized which results in a potentially exploitable crash. This...
CVE-2018-13785 2 Libpng, Canonical 3 Libgpng, Ubuntu Linux, Libpng 2018-12-06 4.3
In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service.
CVE-2018-18438 2 Qemu, Redhat 3 Qemu, Openstack, Enterprise Linux 2018-12-04 2.1
Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.
CVE-2018-12362 4 Mozilla, Canonical, Debian and 1 more 11 Firefox, Firefox Esr, Thunderbird and 8 more 2018-12-03 6.8
An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox...
CVE-2018-17963 2 Qemu, Debian 2 Qemu, Debian Linux 2018-12-01 7.5
qemu_deliver_packet_iov in net/net.c in Qemu accepts packet sizes greater than INT_MAX, which allows attackers to cause a denial of service or possibly have unspecified other impact.
CVE-2016-9104 1 Qemu 1 Qemu 2018-12-01 2.1
Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset,...
CVE-2016-6888 1 Qemu 1 Qemu 2018-12-01 2.1
Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maximum fragmentation count, which triggers an...
CVE-2018-1126 3 Canonical, Debian, Redhat 6 Ubuntu Linux, Debian Linux, Enterprise Linux and 3 more 2018-11-30 7.5
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.
CVE-2018-1124 3 Canonical, Debian, Redhat 6 Ubuntu Linux, Debian Linux, Enterprise Linux and 3 more 2018-11-30 4.6
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes,...
CVE-2017-7542 1 Linux 1 Linux Kernel 2018-11-30 4.9
The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.
CVE-2018-17897 1 Lcds 1 Laquis Scada 2018-11-30 7.5
LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow vulnerabilities, which may allow remote code execution.
CVE-2018-14938 2 Tcpflow Project, Digitalcorpora 2 Tcpflow, Tcpflow 2018-11-29 6.4
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function...
CVE-2018-12842 1 Adobe 4 Acrobat, Acrobat Dc, Acrobat Reader and 1 more 2018-11-29 4.3
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure.
CVE-2018-12881 1 Adobe 4 Acrobat, Acrobat Dc, Acrobat Reader and 1 more 2018-11-29 4.3
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure.
CVE-2018-17958 2 Qemu, Canonical 2 Qemu, Ubuntu Linux 2018-11-28 5.0
Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer data type is used.
CVE-2018-14634 3 Canonical, Linux, Redhat 8 Ubuntu Linux, Linux Kernel, Enterprise Linux Desktop and 5 more 2018-11-27 7.2
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions...