CWE:
 

Topic
Date
Author
Med.
Linux Kernel Keyctl Null Pointer Dereference
16.11.2016
Multiple
Med.
Samsung SystemUI fimg2d Null Pointer Dereference
09.09.2016
Cheetah Mobile
Low
Linux wacom Multiple Null Pointer Dereferences
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor (treo_attach) Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor clie_5_attach Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux aiptek Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cdc_acm Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux digi_acceleport Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux mct_u232 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cypress_m8 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference
18.04.2015
Nicholas Lemonias
Med.
OS X 10.10 IOKit IntelAccelerator NULL Pointer Dereference
22.01.2015
Google Security Resear...
Med.
K7 Computing Multiple Products Null Pointer Dereference
11.12.2014
Kyriakos Economou
Med.
Windows TrackPopupMenu Win32k NULL Pointer Dereference
28.10.2014
Spencer McIntyre
Med.
Linux 3.10 libceph Null Pointer Dereference
10.07.2013
Chanam Park
Low
DartWebserver.dll 1.9.2 Null Pointer Dereference
09.04.2013
Anonymous
Med.
Corel Quattro Pro X6 Standard Edition NULL Pointer Dereference
08.03.2013
High-Tech Bridge Secur...
Med.
Firefly MediaServer Multiple Remote DoS Vulnerabilities
20.12.2012
High-Tech Bridge Secur...
High
Samsung Kies 2.3.2.12054_20 NULL Pointer Dereference and bypass
16.10.2012
High-Tech Bridge Secur...


CVEMAP Search Results

CVE
Details
Description
2017-11-03
Medium
CVE-2017-16532

Vendor: Linux
Software: Linux kernel
 

 
The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.

 
Medium
CVE-2017-16536

Vendor: Linux
Software: Linux kernel
 

 
The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.

 
Medium
CVE-2017-16537

Vendor: Linux
Software: Linux kernel
 

 
The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.

 
2017-10-28
Low
CVE-2017-15955

Vendor: Bchunk project
Software: Bchunk
 

 
bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file.

 
2017-10-27
Medium
CVE-2017-15930

Vendor: Graphicsmagick
Software: Graphicsmagick
 

 
In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer.

 
Low
CVE-2017-15939

Vendor: GNU
Software: Binutils
 

 
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles NULL files in a .debug_line file table, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ELF file, related to concat_filename. NOTE: this issue is caused by an incomplete fix for CVE-2017-15023.

 
2017-10-22
Medium
CVE-2017-15721

Vendor: Irssi
Software: Irssi
 

 
In Irssi before 1.0.5, certain incorrectly formatted DCC CTCP messages could cause a NULL pointer dereference. This is a separate, but similar, issue relative to CVE-2017-9468.

 
Medium
CVE-2017-15723

Vendor: Irssi
Software: Irssi
 

 
In Irssi before 1.0.5, overlong nicks or targets may result in a NULL pointer dereference while splitting the message.

 
2017-10-18
Medium
CVE-2014-3164

Vendor: Google
Software: Android
 

 
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths.

 
2017-10-11
Medium
CVE-2017-15274

Vendor: Linux
Software: Linux kernel
 

 
security/keys/keyctl.c in the Linux kernel before 4.11.5 does not consider the case of a NULL payload in conjunction with a nonzero length value, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted add_key or keyctl system call, a different vulnerability than CVE-2017-12192.

 

 


Copyright 2017, cxsecurity.com

 

Back to Top