Lucene search
K

79 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.2 views

SUSE CVE-2015-7853

The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative input value...

9.8CVSS8.4AI score0.11781EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37644

TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...

5.5CVSS4.9AI score0.00152EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/05/20 10:30 p.m.7 views

CVE-2022-29208 Segfault and Out-of-bounds Write write due to incomplete validation in TensorFlow

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.EditDistance has incomplete validation. Users can pass negative values to cause a segmentation fault based denial of service. In multiple places throughout...

7.1CVSS7.1AI score0.00378EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/05/20 12:0 a.m.6 views

Google TensorFlow缓冲区错误漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. Google TensorFlow versions prior to 2.9.0, 2.8.1, 2.7.2 and 2.6.4 are vulnerable to buffer errors, which originate from tf.rawops. EditDistance has incomplete validation for implementations. An attacker...

7.1CVSS6AI score0.00378EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2021/08/25 2:43 p.m.39 views

`std::abort` raised from `TensorListReserve`

Impact Providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements: python import tensorflow as tf tf.rawops.TensorListReserve elementshape = tf.constant1,...

5.5CVSS5.9AI score0.00152EPSS
Exploits0References7Affected Software3
PyPA
PyPA
added 2021/08/12 11:15 p.m.8 views

PYSEC-2021-291

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...

5.5CVSS6.7AI score0.00175EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2021/08/12 11:15 p.m.5 views

PYSEC-2021-780

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...

5.5CVSS6.7AI score0.00175EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/08/12 10:55 p.m.3 views

CVE-2021-37669

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...

5.5CVSS6.7AI score0.00175EPSS
Exploits0
OSV
OSV
added 2021/08/12 9:15 p.m.7 views

PYSEC-2021-266

TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...

5.5CVSS5.9AI score0.00152EPSS
Exploits0References2
PyPA
PyPA
added 2021/08/12 9:15 p.m.7 views

PYSEC-2021-755

TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...

5.5CVSS6.9AI score0.00152EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/08/12 8:35 p.m.5 views

CVE-2021-37644

TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...

5.5CVSS6.9AI score0.00152EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/08/12 12:0 a.m.5 views

PT-2021-21786 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: An attacker can cause denial of service in applications serving models using...

9.3CVSS5.5AI score0.00451EPSS
Exploits5References87
CNNVD
CNNVD
added 2021/08/02 12:0 a.m.6 views

多款Qualcomm产品资源管理错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. The resource management error vulnerability in several Qualcomm...

10CVSS8.8AI score0.0077EPSS
Exploits0References7
Code423n4
Code423n4
added 2021/05/27 12:0 a.m.13 views

Incorrect implementation of arctan in the contract FairSideFormula

Handle shw Vulnerability details Impact The current implementation of the arctan formula in the contract FairSideFormula is inconsistent with the referenced paper and could cause incorrect results when the input parameter is negative. The erroneous formula affects the function calculateDeltaOfFSD...

6.8AI score
Exploits0
CNVD
CNVD
added 2018/05/07 12:0 a.m.1 views

libgxps gxps-images.c File Stack Buffer Out-of-Bounds Read Vulnerability

libgxps is a library for processing XPS documents based on GObject a C-based framework. A stack buffer out-of-bounds read vulnerability exists in the Glib call to the 'gxpsimagesguesscontenttype' function in the gxps-images.c file in libgxps 0.3.0 and earlier, which stems from the program receivi...

6.5CVSS7AI score0.0227EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2017/09/08 12:0 a.m.6 views

The vulnerability of the datal driver’s refclock parameter in the Network Time Protocol NTP allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the datal driver parameter of the Network Time Protocol refclock protocol is caused by an operation going beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code or cause a service failure by using a negative...

7.5CVSS7.2AI score0.11781EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2017/08/07 8:29 p.m.24 views

Input validation

The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative input value...

7.5CVSS8.1AI score0.11781EPSS
Exploits0References28Affected Software1
Veracode
Veracode
added 2017/01/31 3:27 a.m.25 views

Denial Of Service (DoS) Or Remote Code Execution (RCE)

libopus is vulnerable to remote code execution or denial of service attacks. The vulnerability exists because silk/NLSFstabilize.c does not properly validate the negative input when computing a minimum distance...

9.3CVSS7.9AI score0.00904EPSS
Exploits0References10Affected Software1
RedHat Linux
RedHat Linux
added 2005/09/28 2:17 p.m.7 views

security flaw

The codapioctl function in the coda functionality pioctl.c for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service crash or execute arbitrary code via negative vi.insize or vi.outsize values, which may trigger a buffer overflow...

2.1CVSS6.5AI score0.00564EPSS
Exploits0References4
Rows per page
Query Builder