Lucene search
+L

48 matches found

OSV
OSV
added 2021/11/05 9:15 p.m.15 views

PYSEC-2021-614

TensorFlow is an open source platform for machine learning. In affected versions during TensorFlow's Grappler optimizer phase, constant folding might attempt to deep copy a resource tensor. This results in a segfault, as these tensors are supposed to not change. The fix will be included in...

5.5CVSS2AI score0.00136EPSS
Exploits0References2
CVE
CVE
added 2021/11/05 8:45 p.m.91 views

CVE-2021-41204

CVE-2021-41204 concerns TensorFlow. In affected builds, during Grappler optimizer constant folding, a deep copy of a resource tensor may be attempted, causing a segfault because such tensors should not change. The issue is addressed with a fix in TensorFlow 2.7.0, and a cherry-pick was applied to...

5.5CVSS5.5AI score0.00136EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2021/10/24 8:3 a.m.3 views

Prototype Pollution

Amendment This was deemed not a vulnerability. Overview utils-copy is a package that allows you to copy or deep clone a value to an arbitrary depth. Affected versions of this package are vulnerable to Prototype Pollution via the copying process if an Object with direct access to its constructor i...

6.5CVSS6.8AI score
Exploits0References2
Packet Storm
Packet Storm
added 2018/04/03 12:0 a.m.53 views

Microsoft Edge Charka JIT Incomplete Fix For Issue 1420

Microsoft Edge: Chakra: JIT: The fix for issue 1420 is incomplete. CVE-2018-0933 Here's a snippet of JavascriptArray::BoxStackInstance. To fix issue 1420 , "deepCopy" was introduced. It only deep-copies the array when "instance-head" is on the stack. So simply by adding a single line of code that...

7.5AI score0.66554EPSS
Exploits3
Prion
Prion
added 2018/04/01 6:29 p.m.18 views

Null pointer dereference

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...

4.3CVSS6.8AI score0.01135EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/04/01 6:29 p.m.5 views

CVE-2018-9165

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...

6.5CVSS5.5AI score0.01135EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/04/01 6:29 p.m.33 views

CVE-2018-9165

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...

6.5CVSS6.9AI score0.01135EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/01 6:0 p.m.39 views

CVE-2018-9165

The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...

6.9AI score0.01135EPSS
Exploits0References2
Rows per page
Query Builder