From DHS/US-CERT's National Vulnerability Database
The DrugDealer function of a smart contract implementation for Ether Cartel, an Ethereum game, allows attackers to take over the contract's ownership, aka ceoAnyone. After that, all the digital assets (including Ether balance and tokens) might be manipulated by the attackers, as exploited in the wil...
jpeg_size in pdfgen.c in PDFGen before 2018-04-09 has a heap-based buffer over-read.
sav_parse_machine_integer_info_record in spss/readstat_sav_read.c in libreadstat.a in ReadStat 0.1.1 has a memory leak related to an iconv_open call.
sas/readstat_sas7bcat_read.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop.
An XSS issue was discovered in Frappe ERPNext v11.x.x-develop b1036e5 via a comment.