ImageMagick 7.0.7–4 mishandles failed memory allocation, which allows remote
attackers to cause a denial of service.
International Components for Unicode (ICU) for C/C++ through 59.1 contains a
double free that allows remote attackers to execute arbitrary code.
GlusterFS in versions prior to 3.10 contains a null pointer dereference that
may cause denial of service.
Bftpd 4.6 contains a memory leak which occurs if a mal-crafted sequence of FTP
requests are received.
ImageMagick 7.0.7–1 and older version are vulnerable to null pointer
dereference in the MagickCore component and might lead to denial of
libvterm through 0+bzr726, as used in Vim and other products, mishandles certain
out-of-memory conditions, leading to a denial of service (application crash),
related to screen.c, etc.
In Bento4 188.8.131.52, a memory allocation failure is unhandled in
Core/Ap4SdpAtom.cpp and leads to crashes.
In Bento4 1.5.1–627, AP4 DataBuffer::SetDataSize does not handle
reallocation fail- ures, leading to a memory copy into a NULL pointer.
In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing
of an invalid progressive JPEG image containing incorrect width and height
values in the image header.