Vulnerabilities (CVE)

CWE filter

CWE-476

Filter

680 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-19060 2 Freedesktop, Canonical 2 Poppler, Ubuntu Linux 2018-12-07 4.3
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path.
CVE-2018-18873 4 Jasper Project, Canonical, Debian and 1 more 5 Jasper, Ubuntu Linux, Debian Linux and 2 more 2018-12-07 6.8
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.
CVE-2018-19542 3 Jasper Project, Canonical, Suse 4 Jasper, Ubuntu Linux, Linux Enterprise Desktop and 1 more 2018-12-07 4.3
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.
CVE-2018-18937 1 Mz-automation 1 Libiec61850 2018-12-07 5.0
An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in ClientDataSet_getValues in client/ied_connection.c.
CVE-2018-19122 1 Mz-automation 1 Libiec61850 2018-12-07 4.3
An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in Ethernet_sendPacket in ethernet_bsd.c.
CVE-2018-19121 1 Mz-automation 1 Libiec61850 2018-12-07 4.3
An issue has been found in libIEC61850 v1.3. It is a SEGV in Ethernet_receivePacket in ethernet_bsd.c.
CVE-2018-18607 2 Gnu, Debian 2 Binutils, Debian Linux 2018-12-06 4.3
An issue was discovered in elf_link_input_bfd in elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in elf_link_input_bfd when used for finding STT_TLS...
CVE-2018-18606 2 Gnu, Debian 2 Binutils, Debian Linux 2018-12-06 4.3
An issue was discovered in the merge_strings function in merge.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in _bfd_add_merge_section when attempting to merge...
CVE-2018-18829 1 Libav 1 Libav 2018-12-06 4.3
There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows attackers to cause a denial-of-service through a crafted aac file.
CVE-2018-18661 1 Libtiff 1 Libtiff 2018-12-04 4.3
An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function LZWDecode in the file tif_lzw.c.
CVE-2018-15367 2018-12-04 7.2
A ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. An attacker...
CVE-2018-18327 2018-12-04 7.2
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. The issue results from...
CVE-2018-18328 2018-12-04 7.2
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. The issue results from...
CVE-2018-18329 2018-12-04 7.2
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. The issue results from...
CVE-2018-10548 3 Php, Canonical, Debian 3 Php, Ubuntu Linux, Debian Linux 2018-12-03 5.0
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service (NULL pointer dereference and application crash) because of...
CVE-2018-7456 1 Libtiff 1 Libtiff 2018-12-01 4.3
A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013. (This affects an earlier part of...
CVE-2016-8578 1 Qemu 1 Qemu 2018-12-01 1.9
The v9fs_iov_vunmarshal function in fsdev/9p-iov-marshal.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) by sending an empty string parameter to a...
CVE-2016-6888 1 Qemu 1 Qemu 2018-12-01 2.1
Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maximum fragmentation count, which triggers an...
CVE-2018-6925 1 Freebsd 1 Freebsd 2018-11-30 4.9
In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338985), and 10.4-RELEASE-p13, due to improper maintenance of IPv6 protocol control block flags through various failure paths, an unprivileged authenticated...
CVE-2018-18457 1 Xpdfreader 1 Xpdf 2018-11-30 4.3
The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted pdf file, as demonstrated by pdftoppm.