CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
8,951 vulnerabilities with CWE-125
CVE-2016-8682
HIGH
GraphicsMagick 1.3.25 - Denial of Service via Crafted SCT Header
CVSS 7.5
CVE-2016-10199
HIGH
GStreamer < 1.10.3 - Denial of Service via Crafted Tag Value in qtdemux_tag_add_str_full
CVSS 7.5
CVE-2016-10198
MEDIUM
GStreamer < 1.10.3 - Denial of Service via Crafted Audio File
CVSS 5.5
CVE-2016-9532
MEDIUM
libtiff < 4.0.7 - Out-of-bounds Read via Crafted TIF File
CVSS 5.5
CVE-2016-7449
HIGH
GraphicsMagick 1.3.24 - Denial of Service via TIFFGetField Heap Read
CVSS 7.5
CVE-2016-10208
MEDIUM
Linux Kernel < 4.9.8 - Denial of Service via Crafted ext4 Image
CVSS 4.3
CVE-2016-10165
HIGH
Little CMS < 2.11 - Out-of-bounds Read via Crafted ICC Profile
CVSS 7.1
CVE-2016-3183
MEDIUM
OpenJPEG < 2.1.0 - Out-of-bounds Read in sycc422_t_rgb Function
CVSS 5.5
CVE-2016-9642
MEDIUM
WebKit - Denial of Service via Out-of-Bounds Heap Read
CVSS 5.5
CVE-2016-8568
MEDIUM
libgit2 <0.24.3 - DoS
CVSS 5.5
CVE-2016-6163
MEDIUM
librsvg 2.40.2 - Out-of-bounds Read in rsvg_pattern_fix_fallback
CVSS 5.5
CVE-2016-5115
MEDIUM
libavformat 57.34.103 - Denial of Service via Crafted MP3 File
CVSS 5.5
CVE-2016-6238
MEDIUM
lepton - Denial of Service via Out-of-bounds Read in write_ujpg Function
CVSS 5.5
CVE-2016-6236
MEDIUM
lepton - Out-of-bounds Read in JPEG Image Setup
CVSS 5.5
CVE-2016-5434
MEDIUM
pacman 5.0.1 - Denial of Service via Crafted Signature File
CVSS 5.5
CVE-2016-2518
MEDIUM
NTP < 4.2.8p9 and 4.3.x < 4.3.92 - Out-of-bounds Read via addpeer Request with Large hmode Value
CVSS 5.3
CVE-2016-5827
HIGH
libical 0.47 and 1.0 - Out-of-bounds Read via icaltime_from_string Function
CVSS 7.5
CVE-2016-5826
HIGH
libical 0.47 and 1.0 - Denial of Service via Crafted String to icalparser_parse_string
CVSS 7.5
CVE-2016-5825
MEDIUM
libical 0.47 and 1.0 - Denial of Service via Crafted ICS File
CVSS 5.5
CVE-2016-9050
HIGH
Aerospike Database Server 3.10.0.3 - Info Disclosure
CVSS 8.2
CVE-2016-6911
MEDIUM
libgd < 2.2.4 - Denial of Service via Crafted TIFF Image
CVSS 5.5
CVE-2016-10161
HIGH
PHP < 5.6.30, 7.0.x < 7.0.15, 7.1.x < 7.1.1 - Denial of Service via Crafted Serialized Data
CVSS 7.5
CVE-2016-9447
HIGH
gstreamer 0.10.x - Out-of-bounds Read and Write via NSF Decoder
CVSS 7.8
CVE-2016-7410
MEDIUM
libdwarf - Denial of Service via Buffer Over-Read in _dwarf_read_loc_section
CVSS 5.5
CVE-2016-5316
MEDIUM
libtiff < 4.0.6 - Out-of-bounds Read in PixarLogCleanup Function
CVSS 6.5
Details
Vulnerabilities
8,951