Linux Distros Unpatched Vulnerability : CVE-2017-15266

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTORwavextractmethod in wavextractor.c via a zero sample rate. CVE-2017-15266 Note that Nessus relies...

Synology DiskStation Manager Cross-site Scripting (CVE-2018-8917)

Cross-site scripting XSS vulnerability in info.cgi in Synology DiskStation Manager DSM before 6.1.6-15266 allows remote attackers to inject arbitrary web script or HTML via the host parameter. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mor...

CVE-2019-15266

creationtimestamp| type| source ---|---|--- 2024-01-16 09:02:09+00:00| seen| https://t.me/ctinow/168686...

Security Bulletin: Multiple vulnerabilities fixed in IBM Maximo Application Suite Monitor

Summary IBM Maximo Application Suite Monitor is vulnerable to Multiple vulnerabilities. See Vulnerability Details. This has been addressed in each of the components; refer to the Remediation section for details. Vulnerability Details CVEID: CVE-2020-15265 DESCRIPTION: Tensorflow is vulnerable to ...

Mageia: Security Advisory (MGASA-2017-0413)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: TensorFlow in Watson Machine Learning Community Edition 1.6.2 and 1.7.0 has been patched for various security issues.

Summary TensorFlow in Watson Machine Learning Community Edition 1.6.2 and 1.7.0 has had various CVE reported against it and have been patched. Users should update to the latest available TensorFlow package. Vulnerability Details CVEID: CVE-2020-15265 DESCRIPTION: Tensorflow is vulnerable to a...

Ubuntu: Security Advisory (USN-4641-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS : libextractor vulnerabilities (USN-4641-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4641-1 advisory. It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service...

USN-4641-1: libextractor vulnerabilities

It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. CVE-2017-15266 It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a deni...

USN-4641-1 libextractor vulnerabilities

It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. CVE-2017-15266 It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a deni...

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +163 more potentially affected by CVE-2020-15266 via tensorflow-gpu (>=1.10.1 <=2.3.4)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2020-15266 Source advisory: OSV:GHSA-XWHF-G6J5-J5GC...

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4747 more potentially affected by CVE-2020-15266 via tensorflow (>=1.0.1 <=2.3.4)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2020-15266 Source advisory: OSV:GHSA-XWHF-G6J5-J5GC...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +95 more potentially affected by CVE-2020-15266 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2020-15266 Source advisory: OSV:GHSA-XWHF-G6J5-J5GC...

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4747 more potentially affected by CVE-2020-15266 via tensorflow (>=1.0.1 <=2.3.4)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2020-15266 Source advisory: OSV:PYSEC-2020-139...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +95 more potentially affected by CVE-2020-15266 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2020-15266 Source advisory: OSV:PYSEC-2020-296...

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +163 more potentially affected by CVE-2020-15266 via tensorflow-gpu (>=1.10.1 <=2.3.4)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2020-15266 Source advisory: OSV:PYSEC-2020-331...

CVE-2020-15266 Undefined behavior in Tensorflow

In Tensorflow before version 2.4.0, when the boxes argument of tf.image.cropandresize has a very large value, the CPU kernel implementation receives it as a C++ nan floating point value. Attempting to operate on this is undefined behavior which later produces a segmentation fault. The issue is...

CVE-2020-15266

In TensorFlow, CVE-2020-15266 affects the tf.image.crop_and_resize path: when boxes contains a very large value in versions before 2.4.0, the CPU kernel reads it as a C++ NaN and causes undefined behavior leading to a segmentation fault. The issue is fixed in commit eccb7ec454e6617738554a255d77f0...

CVE-2020-15266

In Tensorflow before version 2.4.0, when the boxes argument of tf.image.cropandresize has a very large value, the CPU kernel implementation receives it as a C++ nan floating point value. Attempting to operate on this is undefined behavior which later produces a segmentation fault. The issue is...

CVE-2019-20530

An issue was discovered on Samsung mobile devices with N7.1, O8.x, P9.0, and Q10.0 software. Arbitrary code execution is possible on the lock screen. The Samsung ID is SVE-2019-15266 December 2019...