CWE:
 

Topic
Date
Author
High
Microsoft Windows SetImeInfoEx Win32k NULL Pointer Dereference
20.10.2018
unamer
Med.
Linux Kernel Keyctl Null Pointer Dereference
16.11.2016
Multiple
Med.
Samsung SystemUI fimg2d Null Pointer Dereference
09.09.2016
Cheetah Mobile
Low
Linux wacom Multiple Null Pointer Dereferences
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor (treo_attach) Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor clie_5_attach Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux aiptek Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cdc_acm Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux digi_acceleport Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux mct_u232 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cypress_m8 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference
18.04.2015
Nicholas Lemonias
Med.
OS X 10.10 IOKit IntelAccelerator NULL Pointer Dereference
22.01.2015
Google Security Resear...
Med.
K7 Computing Multiple Products Null Pointer Dereference
11.12.2014
Kyriakos Economou
Med.
Windows TrackPopupMenu Win32k NULL Pointer Dereference
28.10.2014
Spencer McIntyre
Med.
Linux 3.10 libceph Null Pointer Dereference
10.07.2013
Chanam Park
Low
DartWebserver.dll 1.9.2 Null Pointer Dereference
09.04.2013
Anonymous
Med.
Corel Quattro Pro X6 Standard Edition NULL Pointer Dereference
08.03.2013
High-Tech Bridge Secur...
Med.
Firefly MediaServer Multiple Remote DoS Vulnerabilities
20.12.2012
High-Tech Bridge Secur...
High
Samsung Kies 2.3.2.12054_20 NULL Pointer Dereference and bypass
16.10.2012
High-Tech Bridge Secur...


CVEMAP Search Results

CVE
Details
Description
2018-08-03
Medium
CVE-2018-14884

Vendor: PHP
Software: PHP
 

 
An issue was discovered in PHP 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. Inappropriately parsing an HTTP response leads to a segmentation fault because http_header_value in ext/standard/http_fopen_wrapper.c can be a NULL value that is mishandled in an atoi call.

 
2018-08-01
Low
CVE-2016-9572

Vendor: Openjpeg
Software: Openjpeg
 

 
A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image.

 
2018-07-29
Medium
CVE-2018-14737

Vendor: Pbc project
Software: PBC
 

 
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A NULL pointer dereference can occur in pbc_wmessage_string in wmessage.c.

 
2018-07-27
Medium
CVE-2018-14613

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in io_ctl_map_page() when mounting and operating a crafted btrfs image, because of a lack of block group item validation in check_leaf_item in fs/btrfs/tree-checker.c.

 
Medium
CVE-2018-14609

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not been initialized.

 
Medium
CVE-2018-14612

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in btrfs_root_node() when mounting a crafted btrfs image, because of a lack of chunk block group mapping validation in btrfs_read_block_groups in fs/btrfs/extent-tree.c, and a lack of empty-tree checks in check_leaf in fs/btrfs/tree-checker.c.

 
Medium
CVE-2018-14614

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is an out-of-bounds access in __remove_dirty_segment() in fs/f2fs/segment.c when mounting an f2fs image.

 
Medium
CVE-2018-14616

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference in fscrypt_do_page_crypto() in fs/crypto/crypto.c when operating on a file in a corrupted f2fs image.

 
Medium
CVE-2018-14617

Vendor: Linux
Software: Linux kernel
 

 
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed catalog data, and is mounted read-only without a metadata directory.

 
Medium
CVE-2017-15120

Vendor: Powerdns
Software: Recursor
 

 
An issue has been found in the parsing of authoritative answers in PowerDNS Recursor before 4.0.8, leading to a NULL pointer dereference when parsing a specially crafted answer containing a CNAME of a different class than IN. An unauthenticated remote attacker could cause a denial of service.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top