Upstream (libssh2) Security Advisory - Using SSH_MSG_KEXINIT data unbounded (CVE-2015-1782)
Upstream (libssh) Security Advisory - Possible double free on a dangling pointer with crafted kexinit packet (CVE-2015-3146)
MZET-ADV-2017-01 - Multiple memory corruption issues in Artifex MuPDF ver. 1.12.0 (CVE-2017-17858)