55 matches found
OPENSUSE-SU-2020:1766-1 Security update for tensorflow2
This update for tensorflow2 fixes the following issues: - updated to 2.1.2 with following fixes boo1177022: Fixes an undefined behavior causing a segfault in tf.rawops.Switch CVE-2020-15190 Fixes three vulnerabilities in conversion to DLPack format CVE-2020-15191, CVE-2020-15192, CVE-2020-15193...
PT-2020-14325 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.4.0 Description: The issue allows an attacker to pass an invalid axis value to tf.quantization.quantize and dequantize, resulting in accessing a dimension outside the rank of the input tensor in the C++ kernel...
OPENSUSE-SU-2019:2501-1 Security update for rsyslog
This update for rsyslog fixes the following issues: Security issues fixed: - CVE-2019-17041: Fixed a heap overflow in the parser for AIX log messages bsc1153451. - CVE-2019-17042: Fixed a heap overflow in the parser for Cisco log messages bsc1153459. Other issue addressed: - Fixed an issue where...
SUSE-SU-2019:2444-1 Security update for djvulibre
This update for djvulibre fixes the following issues: Security issues fixed: - CVE-2019-15142: Fixed heap-based buffer over-read bsc1146702. - CVE-2019-15143: Fixed resource exhaustion caused by corrupted image files bsc1146569. - CVE-2019-15144: Fixed denial-of-service caused by crafted PBM imag...
SUSE-SU-2018:4066-1 Security update for samba
This update for samba fixes the following issues: Update to samba version 4.7.11. Security issues fixed: - CVE-2018-14629: Fixed CNAME loops in Samba AD DC DNS server bsc1116319. - CVE-2018-16841: Fixed segfault on PKINIT when mis-matching principal bsc1116320. - CVE-2018-16851: Fixed NULL pointe...
UBUNTU-CVE-2018-8022
A carefully crafted invalid TLS handshake can cause Apache Traffic Server ATS to segfault. This affects version 6.2.2. To resolve this issue users running 6.2.2 should upgrade to 6.2.3 or later versions...
SUSE SLED12 / SLES12 Security Update : sssd (SUSE-SU-2017:2937-1)
This update for sssd provides the following fixes: Security issues fixed : - CVE-2017-12173: Fixed unsanitized input when searching in local cache database bsc1061832. Non security issues fixed : - Fixed a segfault issue in ldaprfc2307fallbacktolocalusers. bsc1055123 - Install /var/lib/sss/mc...
SUSE-SU-2017:2937-1 Security update for sssd
This update for sssd provides the following fixes: Security issues fixed: - CVE-2017-12173: Fixed unsanitized input when searching in local cache database bsc1061832. Non security issues fixed: - Fixed a segfault issue in ldaprfc2307fallbacktolocalusers. bsc1055123 - Install /var/lib/sss/mc...
SUSE-SU-2017:1671-1 Security update for cairo
This update for cairo fixes the following issues: - CVE-2017-7475: Fixed a segfault in getbitmapsurface due to malformed font bsc1036789. - CVE-2016-9082: fix a segfault when using 4GB images since int values were used for pointer operations bsc1007255...
[SECURITY] [DLA 130-1] firebird2.1 security update
Package : firebird2.1 Version : 2.1.3.18185-0.ds1-11+squeeze2 CVE ID : CVE-2014-9323 Segfault in server caused by malformed network packet. See: http://tracker.firebirdsql.org/browse/CORE-4630...
Fedora 9 : ruby-1.8.6.230-4.fc9 (2008-6033)
Tue Jul 1 2008 Akira TAGOH - 1.8.6.230-4 - Backported from upstream SVN to fix a segfault issue with Arrayfill. - Mon Jun 30 2008 Akira TAGOH - 1.8.6.230-3 - Backported from upstream SVN to fix a segfault issue. 452825 - Backported from upstream SVN to fix an integer overflow in rbaryfill. - Wed...
Security fix for the ALT Linux 10 package apache2 version 2.0.40-9
Oct. 2, 2002 Joe Orton &[email protected] 2.0.40-9 - security fixes for CAN-2002-0840 and CAN-2002-0843 - fix for possible moddav segfault for certain requests...
wwwoffle-2.7b and prior segfaults with negative Content-Length value
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 QITEST1 SECURITY ADVISORY 005 wwwoffle-2.7b and prior segfaults with negative Content-Length value PROGRAM DESCRIPTION WWWOFFLE, World Wide Web Offline Explorer, is a proxy HTTP/FTP server for computers with dial-up internet access. DETAILS When...
format string in ssl dump
Sorry if this has already got posted. Seeweed found this in ssldump the other day. The follwoing text is from his website http://dropwire.dhs.org/seeweed/: SSLDUMP is a program witch is simallar to tcpdump, but also adds encryption to its network debugging procedures..It captures traffic then...
BitchX /ignore bug
I don't know whether this is the right place to put it, but i'm going to anyway : Because of a simple /invite nickname sssssssss, BitchX will segfault and coredump. This is a small programming error, you can find a patch at this location: http://root66.org/karin/BitchX-bug-patch-3-juli-2000.tar.g...