Show filters
75 Total Results
Displaying 11-20 of 75
Sort by:
Attacker Value
Unknown
CVE-2015-5221
Disclosure Date: July 25, 2017 (last updated November 08, 2023)
Use-after-free vulnerability in the mif_process_cmpt function in libjasper/mif/mif_cod.c in the JasPer JPEG-2000 library before 1.900.2 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file.
0
Attacker Value
Unknown
CVE-2017-8932
Disclosure Date: July 06, 2017 (last updated November 08, 2023)
A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.
0
Attacker Value
Unknown
CVE-2016-9960
Disclosure Date: June 06, 2017 (last updated November 08, 2023)
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).
0
Attacker Value
Unknown
CVE-2016-9961
Disclosure Date: June 06, 2017 (last updated November 08, 2023)
game-music-emu before 0.6.1 mishandles unspecified integer values.
0
Attacker Value
Unknown
CVE-2017-8386
Disclosure Date: June 01, 2017 (last updated November 08, 2023)
git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.3 might allow remote authenticated users to gain privileges via a repository name that starts with a - (dash) character.
0
Attacker Value
Unknown
CVE-2016-5178
Disclosure Date: May 23, 2017 (last updated November 08, 2023)
Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.143 allow remote attackers to cause a denial of service or possibly have other impact via unknown vectors.
0
Attacker Value
Unknown
CVE-2016-5177
Disclosure Date: May 23, 2017 (last updated November 08, 2023)
Use-after-free vulnerability in V8 in Google Chrome before 53.0.2785.143 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via unknown vectors.
0
Attacker Value
Unknown
CVE-2016-10243
Disclosure Date: May 02, 2017 (last updated November 08, 2023)
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
0
Attacker Value
Unknown
CVE-2016-6299
Disclosure Date: April 14, 2017 (last updated November 26, 2024)
The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.
0
Attacker Value
Unknown
CVE-2016-9243
Disclosure Date: March 27, 2017 (last updated September 10, 2024)
HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digest_size.
0