Nvidia vGPU Software code issue vulnerability

Nvidia vGPU Software is a management software for providing GPU functionality to virtual machines from Nvidia, Inc. NVIDIA vGPU software is vulnerable to a code issue that could be exploited by an attacker to dereference NULL pointers and cause a denial of service...

Nvidia vGPU Software 代码问题漏洞

Nvidia vGPU Software is a management software for providing GPU functionality to virtual machines from Nvidia, Inc. NVIDIA vGPU software is vulnerable to a code issue that could be exploited by an attacker to dereference NULL pointers and cause a denial of service...

ROS-2-457

2.457 Multiple vulnerabilities in ClamAV antivirus package CVE-2021-1252, CVE-2021-1404, CVE-2021-1405 1. Vulnerability Description: CVE-2021-1252 - looping when processing specially formatted Excel XLM files. CVE-2021-1404 - process crash when processing specially formatted PDF documents...

ROS-2-547

2.547 Multiple vulnerabilities in ClamAV antivirus package CVE-2021-1252, CVE-2021-1404, CVE-2021-1405 1. Vulnerability Description: CVE-2021-1252 - looping when processing specially formatted Excel XLM files. CVE-2021-1404 - process crash when processing specially formatted PDF documents...

Qualcomm 芯片 代码问题漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and from time to time are manufactured on the surface of semiconductor wafers. A code issue vulnerability exists in Qualcomm chips that stems fr...

Google TensorFlow code issue vulnerability (CNVD-2021-64540)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which could be exploited to cause undefined behavior by binding references to null pointers in all binary "cwise" operations that do not require...

Google TensorFlow代码问题漏洞

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which could be exploited to cause undefined behavior by binding references to null pointers in all binary "cwise" operations that do not require...

PT-2021-6954 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to insufficient access restrictions in the Win32k component of Microsoft Windows, allowing an attacker to potentially elevate their privileges. This could...

klibc input validation error vulnerability (CNVD-2021-54001)

klibc is an application program. Provides the ability to work with as many early starts from kernel space as possible. klibc versions prior to 2.0.9 are vulnerable to an input validation error that stems from an integer overflow in the cpio command that could lead to dereferencing NULL pointers o...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists due to an undefined behavior in tf.rawops.MaxPool3DGradGrad by dereferencing null pointers backing attacker-supplied empty tensors...

PYSEC-2021-211

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPool3DGradGrad exhibits undefined behavior by dereferencing null pointers backing attacker-supplied empty tensors. The...

PYSEC-2021-502

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPool3DGradGrad exhibits undefined behavior by dereferencing null pointers backing attacker-supplied empty tensors. The...

PYSEC-2021-700

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPool3DGradGrad exhibits undefined behavior by dereferencing null pointers backing attacker-supplied empty tensors. The...

Heap overflow

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.FusedBatchNorm is vulnerable to a heap buffer overflow. If the tensors are empty, the same implementation can trigger undefined behavior by dereferencing null pointers. The...

PYSEC-2021-700

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPool3DGradGrad exhibits undefined behavior by dereferencing null pointers backing attacker-supplied empty tensors. The...

PYSEC-2021-211

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.MaxPool3DGradGrad exhibits undefined behavior by dereferencing null pointers backing attacker-supplied empty tensors. The...

PYSEC-2020-271

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked. Hence, code...

PYSEC-2020-271

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked. Hence, code...

DEBIAN-CVE-2019-9208

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences...

xml-security-c -- crashes on malformed KeyInfo content

The shibboleth project reports: SAML messages, assertions, and metadata all commonly make use of the XML Signature KeyInfo construct, which expresses information about keys and certificates used in signing or encrypting XML. The Apache Santuario XML Security for C++ library contained code paths a...