Fedoraproject » Fedora » 24 : Security Vulnerabilities, CVEs, Published In 2017 (Overflow)
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (application crash) via a crafted regular expression.
Max CVSS
7.5
EPSS Score
0.70%
Published
2017-02-03
Updated
2020-04-22
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors.
Max CVSS
3.3
EPSS Score
0.07%
Published
2017-02-03
Updated
2021-02-25
Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.
Max CVSS
7.5
EPSS Score
2.29%
Published
2017-03-03
Updated
2017-03-04
Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (crash) via a crafted .j2k file.
Max CVSS
5.5
EPSS Score
1.29%
Published
2017-02-03
Updated
2020-09-09
Off-by-one vulnerability in the fgetwln function in libbsd before 0.8.2 allows attackers to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow.
Max CVSS
9.8
EPSS Score
1.18%
Published
2017-01-13
Updated
2021-01-05
Tor before 0.2.8.12 might allow remote attackers to cause a denial of service (client crash) via a crafted hidden service descriptor.
Max CVSS
7.5
EPSS Score
4.15%
Published
2017-12-05
Updated
2018-10-30
Heap-based buffer overflow in the ALGnew function in block_templace.c in Python Cryptography Toolkit (aka pycrypto) allows remote attackers to execute arbitrary code as demonstrated by a crafted iv parameter to cryptmsg.py.
Max CVSS
9.8
EPSS Score
1.43%
Published
2017-02-15
Updated
2017-07-01
7 vulnerabilities found