325 matches found
SUSE CVE-2022-29210
TensorFlow is an open source platform for machine learning. In version 2.8.0, the TensorKey hash function used total estimated AllocatedBytes, which a is an estimate per tensor, and b is a very poor hash function for constants e.g. int32t. It also tried to access individual tensor bytes through...
Ubuntu: Security Advisory (USN-5036-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-3360
The LearnPress WordPress plugin before 4.1.7.2 unserialises user input in a REST API endpoint available to unauthenticated users, which could lead to PHP Object Injection when a suitable gadget is present, leadint to remote code execution RCE. To successfully exploit this vulnerability attackers...
CVE-2022-3360
The LearnPress WordPress plugin before 4.1.7.2 unserialises user input in a REST API endpoint available to unauthenticated users, which could lead to PHP Object Injection when a suitable gadget is present, leadint to remote code execution RCE. To successfully exploit this vulnerability attackers...
The vulnerability of the SHA-3 cryptographic hash function in the XKCP software package allows a hacker to execute arbitrary code.
The vulnerability of the SHA-3 cryptographic hash function in the eXtended Keccak Code Package XKCP software package is related to errors in block processing of input data and type conversion. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code during the computati...
USN-5036-1: Tor vulnerabilities
It was discovered that Tor incorrectly handled certain memory operations. A remote attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 ESM. CVE-2019-8955 It was discovered that Tor did not properly handle the input length to dumpdesc function. A remot...
User Enumeration via Response Timing
Description There is a significant timing difference in the login functionality for valid and invalid usernames. Proof of Concept Steps to reproduce: 1. Attempt a Login with a valid user and an invalid user and observe the difference in the response time Here is a small test script alternatively ...
User Enumeration via Response Timing
Description There is a significant timing difference in the login functionality of the Nakama Console for valid and invalid email addresses or usernames. Proof of Concept 1. Login to the Nakama Console as admin and create a User [email protected] 2. Logout 3. Attempt a Login with an incorrect passwor...
PT-2022-22579 · Swftools · Swftools
Name of the Vulnerable Software and Affected Versions: SWFTools affected versions not specified Description: A stack overflow issue was discovered in SWFTools via sanitizer::StackDepotNode::hash sanitizer::StackTrace const& at /sanitizer common/sanitizer stackdepot.cpp. Recommendations: At the...
yasm hash function denial of service vulnerability
yasm is a completely rewritten Netwide assembler open-sourced by yasm. A denial of service vulnerability exists in yasm version 1.3.0, which stems from the presence of a NULL pointer dereference in the hash function in modules/preprocs/nasm/nasm-pp.c. An attacker could exploit this vulnerability ...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the hash function in modules/preprocs/nasm/nasm-pp.c. Remediation There is no fixed version for yasm. References - GitHub Gist - GitHub Issue Credit: Clingto...
DEBIAN-CVE-2021-33456
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash in modules/preprocs/nasm/nasm-pp.c...
Null pointer dereference
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash in modules/preprocs/nasm/nasm-pp.c...
UBUNTU-CVE-2021-33456
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash in modules/preprocs/nasm/nasm-pp.c...
CVE-2021-33456
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash in modules/preprocs/nasm/nasm-pp.c...
CVE-2021-33456
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash in modules/preprocs/nasm/nasm-pp.c...
yasm 代码问题漏洞
yasm is a completely rewritten Netwide assembler open-sourced by yasm. A denial of service vulnerability exists in yasm version 1.3.0, which stems from the presence of a NULL pointer dereference in the hash function in modules/preprocs/nasm/nasm-pp.c. An attacker could exploit this vulnerability ...
Nginx 安全漏洞
Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from Nginx, Inc. njs is one of the scripting language components that supports extended NGINX functionality. A security vulnerability exists in Nginx NJS 0.7.5, which stems from a segmentation violation in...
Insufficiently complex hash function used in `useFetch` means return data cannot be trusted
Description The useFetch function uses the ohash library to key requests. This hash function outputs a 32 bit number. Finding a collision for this function is easy. In a situation where useFetch is called more than once, any call after the first that contains untrusted input into any argument is...
Heap buffer overflow due to incorrect hash function in TensorFlow
Impact The TensorKey hash function used total estimated AllocatedBytes, which a is an estimate per tensor, and b is a very poor hash function for constants e.g. int32t. It also tried to access individual tensor bytes through tensor.data of size AllocatedBytes. This led to ASAN failures because th...