24 matches found
PYSEC-2026-1963 TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`
Impact When the parameter summarize of tf.rawops.Print is zero, the new method SummarizeArray will reference to a nullptr, leading to a seg fault. python import tensorflow as tf tf.rawops.Printinput = tf.constant1, 1, 1, 1,dtype=tf.int32, data = False, False, False, False, False, False, False,...
PYSEC-2026-1038 TensorFlow vulnerable to segfault in `QuantizedRelu` and `QuantizedRelu6`
Impact If QuantizedRelu or QuantizedRelu6 are given nonscalar inputs for minfeatures or maxfeatures, it results in a segfault that can be used to trigger a denial of service attack. python import tensorflow as tf outtype = tf.quint8 features = tf.constant28, shape=4,2, dtype=tf.quint8 minfeatures...
EUVD-2026-29174
jq is a command-line JSON processor. In 1.8.1 and earlier, unbounded recursion in jvobjectmergerecursive allows a crafted jq program to crash the process with a segfault. The function is reachable through the operator when both operands are objects...
EUVD-2017-16503
Malware in sbrugna...
EUVD-2018-20401
Malware in sbrugna...
EUVD-2024-20842
Malicious code in bioql PyPI...
EUVD-2025-27141
Malicious code in bioql PyPI...
EUVD-2022-6814
Malicious code in bioql PyPI...
EUVD-2022-6965
Malicious code in bioql PyPI...
EUVD-2022-6944
Malicious code in bioql PyPI...
CVE-2023-41332
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In Cilium clusters where Cilium's Layer 7 proxy has been disabled, creating workloads with policy.cilium.io/proxy-visibility annotations in Cilium = v1.13 or io.cilium.proxy-visibility annotations in Cilium...
CVE-2022-41909
TensorFlow is an open source platform for machine learning. An input encoded that is not a valid CompositeTensorVariant tensor will trigger a segfault in tf.rawops.CompositeTensorVariantToComponents. We have patched the issue in GitHub commits bf594d08d377dc6a3354d9fdb494b32d45f91971 and...
UBUNTU-CVE-2023-46361
Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2error at /jbig2dec/jbig2.c...
PT-2023-7318 · Nginx · Nginx Njs
Name of the Vulnerable Software and Affected Versions: Nginx NJS version 0.7.10 Description: The issue is related to a segmentation violation in the njs lvlhsh find function at src/njs lvlhsh.c and a memory reading issue in the js vmcode return function at src/njs vmcode.c. This could allow a...
CVE-2022-35970 Segfault in `QuantizedInstanceNorm` in TensorFlow
TensorFlow is an open source platform for machine learning. If QuantizedInstanceNorm is given xmin or xmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e...
CVE-2022-21731 Type confusion leading to segfault in Tensorflow
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...
CVE-2021-46548
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via addlinenomapitem at src/mjsbcode.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46543
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /lib/x8664-linux-gnu/libc.so.6+0x18e810. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46537
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via /usr/local/bin/mjs+0x9a30e. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46546
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjsnext at src/mjsobject.c. This vulnerability can lead to a Denial of Service DoS...