CVE-2016-2384: a double-free in USB MIDI driver
CVE-2016-9793: a signedness issue with SO_SNDBUFFORCE and SO_RCVBUFFORCE socket options
CVE-2017-6074: a double-free in DCCP protocol
CVE-2017-7308: a signedness issue in AF_PACKET sockets
CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch
CVE-2017-18344: arbitrary-read vulnerability in the timer subsystem