CWE-190

Medium likelihood

Integer Overflow or Wraparound

Parent: CWE-682 - Incorrect Calculation

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

3,209 vulnerabilities with CWE-190
CVE-2016-6916 HIGH
NVIDIA Shield Tablet Firmware < 4.3.0 - Denial of Service via Integer Overflow in nvhost_job.c
CVSS 7.8
CVE-2016-2347 HIGH
Opensuse Leap < 0.3.0 - Integer Overflow
CVSS 7.8
CVE-2016-5762 CRITICAL
Novell GroupWise <2014 R2 SP1 HP1 - RCE
CVSS 9.8
CVE-2016-10319 MEDIUM
ARM Trusted Firmware 1.2-1.3 - Integer Overflow in Firmware Update SMC Handling
CVSS 5.9
CVE-2016-8795 MEDIUM
Huawei CloudEngine <6.0 - Info Disclosure
CVSS 5.9
CVE-2016-6177 MEDIUM
Huawei OceanStor 5800 V300R003C00 - Buffer Overflow
CVSS 6.5
CVE-2016-9123 HIGH
go-jose <1.0.5 - Privilege Escalation
CVSS 7.5
CVE-2016-9557 MEDIUM
jasper < 1.900.24 - Denial of Service via Integer Overflow in jas_image.c
CVSS 5.5
CVE-2016-9387 HIGH
JasPer < 1.900.12 - Integer Overflow in jpc_dec_process_siz
CVSS 7.8
CVE-2016-9262 MEDIUM
JasPer < 1.900.21 - Integer Overflow and Use-After-Free via Crafted Image
CVSS 5.5
CVE-2016-10168 HIGH
libgd < 2.2.4 - Integer Overflow in gd_io.c via Image Chunk Counts
CVSS 7.8
CVE-2016-10251 HIGH
JasPer < 1.900.19 - Integer Overflow in jpc_pi_nextcprl Function
CVSS 7.8
CVE-2016-10249 HIGH
JasPer < 1.900.12 - Heap-Based Buffer Overflow via Crafted Image File
CVSS 7.8
CVE-2016-6522 MEDIUM
OpenBSD 5.9 - Denial of Service via uvm_map_isavail Integer Overflow
CVSS 5.5
CVE-2016-6241 HIGH
OpenBSD 5.8 and 5.9 - Integer Overflow in amap_alloc1
CVSS 7.8
CVE-2016-9824 MEDIUM
libav 11.8 - Denial of Service via Integer Overflow in swscale.c
CVSS 5.5
CVE-2016-9822 MEDIUM
libav 11.8 - Denial of Service via Integer Overflow in mpeg12dec.c
CVSS 5.5
CVE-2016-9821 MEDIUM
libav 11.8 - Denial of Service via Integer Overflow in mpegvideo_parser
CVSS 5.5
CVE-2016-10093 HIGH
LibTIFF 3.9.3-4.0.7 - Heap-Based Buffer Overflow via Crafted Image
CVSS 7.8
CVE-2016-9558 CRITICAL
libdwarf < 2016-11-24 - Integer Overflow in Signed LEB Number Parsing
CVSS 9.8
CVE-2016-8389 HIGH
Iceni Argus - Integer Overflow via Malformed PDF to XML Conversion
CVSS 7.8
CVE-2016-4490 MEDIUM
libiberty - Denial of Service via Integer Overflow in cp-demangle.c
CVSS 5.5
CVE-2016-4489 MEDIUM
GNU libiberty - Denial of Service via Integer Overflow in gnu_special Function
CVSS 5.5
CVE-2016-2226 HIGH
GNU libiberty - Remote Code Execution via Integer Overflow in cplus-dem.c
CVSS 7.8
CVE-2016-8636 HIGH
Linux kernel <4.9.10 - Memory Corruption
CVSS 7.8
Details
Vulnerabilities 3,209
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits