buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.1…

db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attacke…

The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0…

Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remo…

net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of cha…

Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in l…

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent a…

The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of ser…

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery…

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact…

The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through…

The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozi…

Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, …

Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.…

Race condition in libssl in Mozilla Network Security Services (NSS) before 3.15.4, as used in M…

Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4…

Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and …

The TLS implementation in Mozilla Network Security Services (NSS) does not properly consider ti…

Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, …

Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile functions in the tiff2rg…

Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Fi…

The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attacke…

Unspecified vulnerability in the Oracle VM Server for SPARC component in Oracle Sun Systems Pro…

Xen 4.6.x and earlier allows local guest administrators to cause a denial of service (host rebo…

The VGA module in QEMU improperly performs bounds checking on banked access to video memory, wh…

The filesystem layer in the Linux kernel before 4.5.5 proceeds with post-rename operations afte…

The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does …

The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not pr…

The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators t…

Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of ser…

fs/overlayfs/dir.c in the OverlayFS filesystem implementation in the Linux kernel before 4.6 do…

Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a…

Vulnerability in the Oracle VM Server for SPARC product of Oracle Systems (component: Templates…

The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hard…

The libxl device-handling in Xen 4.6.x and earlier allows local OS guest administrators to caus…

The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the h…

Vulnerability in the Oracle VM Server for Sparc component of Oracle Sun Systems Products Suite …

A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider name…

In the Unbreakable Enterprise Kernel (UEK), the RDS module in UEK has two setsockopt(2) options…

An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious EL…