79 matches found
SUSE CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative input value...
SUSE CVE-2021-37644
TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...
CVE-2022-29208 Segfault and Out-of-bounds Write write due to incomplete validation in TensorFlow
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.EditDistance has incomplete validation. Users can pass negative values to cause a segmentation fault based denial of service. In multiple places throughout...
Google TensorFlow缓冲区错误漏洞
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. Google TensorFlow versions prior to 2.9.0, 2.8.1, 2.7.2 and 2.6.4 are vulnerable to buffer errors, which originate from tf.rawops. EditDistance has incomplete validation for implementations. An attacker...
`std::abort` raised from `TensorListReserve`
Impact Providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements: python import tensorflow as tf tf.rawops.TensorListReserve elementshape = tf.constant1,...
PYSEC-2021-291
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...
PYSEC-2021-780
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...
CVE-2021-37669
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...
PYSEC-2021-266
TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...
PYSEC-2021-755
TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...
CVE-2021-37644
TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...
PT-2021-21786 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: An attacker can cause denial of service in applications serving models using...
多款Qualcomm产品资源管理错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. The resource management error vulnerability in several Qualcomm...
Incorrect implementation of arctan in the contract FairSideFormula
Handle shw Vulnerability details Impact The current implementation of the arctan formula in the contract FairSideFormula is inconsistent with the referenced paper and could cause incorrect results when the input parameter is negative. The erroneous formula affects the function calculateDeltaOfFSD...
libgxps gxps-images.c File Stack Buffer Out-of-Bounds Read Vulnerability
libgxps is a library for processing XPS documents based on GObject a C-based framework. A stack buffer out-of-bounds read vulnerability exists in the Glib call to the 'gxpsimagesguesscontenttype' function in the gxps-images.c file in libgxps 0.3.0 and earlier, which stems from the program receivi...
The vulnerability of the datal driver’s refclock parameter in the Network Time Protocol NTP allows a perpetrator to execute arbitrary code or cause a service failure.
The vulnerability of the datal driver parameter of the Network Time Protocol refclock protocol is caused by an operation going beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code or cause a service failure by using a negative...
Input validation
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative input value...
Denial Of Service (DoS) Or Remote Code Execution (RCE)
libopus is vulnerable to remote code execution or denial of service attacks. The vulnerability exists because silk/NLSFstabilize.c does not properly validate the negative input when computing a minimum distance...
security flaw
The codapioctl function in the coda functionality pioctl.c for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service crash or execute arbitrary code via negative vi.insize or vi.outsize values, which may trigger a buffer overflow...