The vulnerability of Veeam Backup & Replication’s protection mechanism for cloud, virtual, and physical systems lies in its ability to allow unauthorized access to read, modify, or delete data stored in memory. This vulnerability enables attackers to gain unauthorized access to these data.

The vulnerability of Veeam Backup & Replication’s protection for cloud, virtual, and physical systems stems from the restoration of unreliable data in memory due to the lack of authenticity verification for a critical function. Exploiting this vulnerability can allow an attacker operating remotel...

kernel: x86/mm: Randomize per-cpu entry area

A possible unauthorized memory access flaw was found in the Linux kernel cpuentryarea mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. This issue could allow a local user to gain access to some important data with expected locatio...

The vulnerability of the scsi_host_busy() function in the drivers/scsi/scsi_error.c component of the Linux kernel allows a malicious actor to cause a service failure.

The vulnerability of the scsihostbusy function in the drivers/scsi/scsierror.c component of the Linux kernel relates to the recovery of unreliable data in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

Linux-pam 安全漏洞

Linux-pam is a pluggable-supported system authentication software for Linux from the Linux team. A security vulnerability exists in Linux-pam, which stems from confidential information stored in memory that can trigger execution of a victim program by sending characters to its standard input stdi...

The vulnerability of the ColdFusion software platform, related to the restoration of unreliable data in memory, allows a hacker to execute arbitrary code.

The vulnerability of the ColdFusion software platform lies in the recovery of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of Adobe Audition’s audio editor, related to reading data beyond the buffer in memory, allows a hacker to gain access to confidential information.

The vulnerability of Adobe Audition relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to access confidential information...

The vulnerability of the nltk.download() function in the Natural Language Toolkit (NLTK) library, which is used for symbolic and statistical processing of natural language, allows a hacker to execute arbitrary code.

The vulnerability of the nltk.download function in the Natural Language Toolkit NLTK library, which is used for symbolic and statistical processing of natural language, relates to the recovery of unreliable data in memory during the processing of the averagedperceptrontagger and punkt packages...

llama.cpp Global Buffer Overflow Vulnerability

llama.cpp is a multimodal model. A global buffer overflow vulnerability exists in llama.cpp, which can be exploited by an attacker to cause a memory data leak...

CVE-2024-42477

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

CVE-2024-42477

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

CVE-2024-42477 llama.cpp global-buffer-overflow in ggml_type_size

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

CVE-2024-42477

CVE-2024-42477 affects llama.cpp (C/C++) where an unsafe type member in the rpc_tensor structure can trigger a global-buffer-overflow, potentially leaking memory data. The issue is reported as fixed in commit b3561 and is reflected in Fedora security advisory FEDORA-2024-89c69bb9d3 and related ad...

CVE-2024-42477 llama.cpp global-buffer-overflow in ggml_type_size

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

CVE-2024-42477

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

CVE-2024-42477 llama.cpp global-buffer-overflow in ggml_type_size

llama.cpp provides LLM inference in C/C++. The unsafe type member in the rpctensor structure can cause global-buffer-overflow. This vulnerability may lead to memory data leakage. The vulnerability is fixed in b3561...

PT-2024-29973 · Llama.Cpp · Llama.Cpp

Name of the Vulnerable Software and Affected Versions: llama.cpp version b3561 and earlier Description: The issue arises from the unsafe type member in the rpc tensor structure, which can cause a global-buffer-overflow. This may lead to memory data leakage. Recommendations: For versions prior to...

The vulnerability of PMB electronic document management software lies in its ability to restore unreliable data in memory, allowing a perpetrator to execute arbitrary code.

The vulnerability of PMB electronic document management software is related to the restoration of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

DEBIAN-CVE-2024-5535

Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected application beahviour or ...

The vulnerability of the AVEVA PI Asset Framework (AF) Client application for managing production process data, related to the recovery of unreliable data in memory, allows a attacker to execute arbitrary code.

The vulnerability of the AVEVA PI Asset Framework AF Client, a data management application for manufacturing processes, lies in its ability to restore unreliable data in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially created data...

The vulnerability of the PI AVEVA PI Web API interface, related to the restoration of unreliable data in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PI AVEVA PI Web API interface is related to the restoration of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created data...