canonical vulnerabilities and exploits

4.6
CVSSv2
CVE-2012-6711

A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo...

GnuBashRedhatEnterprise Linux
4.3
CVSSv2
CVE-2017-13726

There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack....

Libtiff
NA
CVE-2019-2762

Oracle Java SE/Java SE Embedded CVE-2019-2762 Remote Security Vulnerability...

NA
CVE-2019-2745

Oracle Java SE CVE-2019-2745 Local Security Vulnerability...

NA
CVE-2019-2786

Oracle Java SE/Java SE Embedded CVE-2019-2786 Remote Security Vulnerability...

NA
CVE-2019-2842

An unspecified vulnerability in Oracle Java SE related to the Java SE JCE component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown attack vectors....

NA
CVE-2019-2816

An unspecified vulnerability in Oracle Java SE related to the Java SE, Java SE Embedded Networking component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and no availability impact....

NA
CVE-2019-2769

Oracle Java SE/Java SE Embedded CVE-2019-2769 Remote Security Vulnerability...

2.6
CVSSv2
CVE-2018-9251

The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035....

XmlsoftLibxml2DebianDebian Linux
4.3
CVSSv2
CVE-2017-18013

In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash....

Libtiff