44 matches found
UBUNTU-CVE-2024-50610
GSL GNU Scientific Library through 2.8 has an integer signedness error in gslsimansolvemany in siman/siman.c. When params.ntries is negative, incorrect memory allocation occurs...
PT-2024-34356
Name of the Vulnerable Software and Affected Versions: GSL GNU Scientific Library versions prior to 2.9 Description: The issue is caused by an integer signedness error in the gsl siman solve many function, located in siman/siman.c. This error occurs when params.n tries is negative, resulting in...
CVE-2024-50610
GSL GNU Scientific Library through 2.8 has an integer signedness error in gslsimansolvemany in siman/siman.c. When params.ntries is negative, incorrect memory allocation occurs...
CVE-2024-50610
CVE-2024-50610 affects GSL (GNU Scientific Library) up to version 2.8. The issue is an integer signedness error in gsl_siman_solve_many (in siman/siman.c) that can trigger incorrect memory allocation when params.n_tries is negative. Multiple connected advisories (ALAS/AL2 and OSV feed) confirm th...
CVE-2024-50610
GSL GNU Scientific Library through 2.8 has an integer signedness error in gslsimansolvemany in siman/siman.c. When params.ntries is negative, incorrect memory allocation occurs...
USN-6472-1 gsl vulnerability
It was discovered that GNU Scientific Library incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 ESM / 23.04 : GNU Scientific Library vulnerability (USN-6472-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 ESM / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6472-1 advisory. It was discovered that GNU Scientific Library incorrectly handled certain inputs. If a user or an automated system wer...
Amazon Linux AMI : gsl (ALAS-2023-1851)
The version of gsl installed on the remote host is prior to 1.13-4.4. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1851 advisory. A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2....
Medium: gsl
Issue Overview: A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application...
SUSE SLED15: gsl / gsl-devel / gsl-doc / gsl-examples / gsl-gnu-hpc / etc (SUSE-SU-2023:3858-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3858-1 advisory. - CVE-2020-35357: Fixed a stack out of bounds read in gslstatsquantilefromsorteddata. bsc1214681 Tenable...
[SECURITY] [DLA 3576-1] gsl security update
Debian LTS Advisory DLA-3576-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany September 21, 2023 https://wiki.debian.org/LTS Package : gsl Version : 2.5+dfsg-6+deb10u1 CVE ID : CVE-2020-35357 A buffer overflow can occur when calculating the quantile value using t...
Medium: gsl
Issue Overview: A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application...
Medium: gsl
Issue Overview: A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application...
Amazon Linux 2023 : gsl, gsl-devel (ALAS2023-2023-353)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-353 advisory. A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for...
SUSE SLED15: gsl_2_4-gnu-hpc / gsl_2_4-gnu-hpc-devel / gsl_2_4-gnu-hpc-doc / etc (SUSE-SU-2023:3527-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3527-1 advisory. - CVE-2020-35357: Fixed a stack out of bounds read in gslstatsquantilefromsorteddata. bsc1214681 Tenable...
GNU Scientific Library Buffer Overflow Vulnerability
GNU Scientific Library is an open source scientific computing library developed by the GNU organization , mainly used for C/C++ programs , providing mathematical operations , statistical analysis , linear algebra , etc. more than 1,000 functions , applicable to physical simulation , engineering...
SUSE CVE-2020-35357
A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application termination or arbitra...
AZL-43711 CVE-2020-35357 affecting package gsl 2.6-3
A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application termination or arbitra...
AZL-45111 CVE-2020-35357 affecting package gsl for versions less than 2.8-1
A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application termination or arbitra...
DEBIAN-CVE-2020-35357
A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application termination or arbitra...