CVE-2024-37795

CVE-2024-37795 concerns a segmentation fault in CVC5 Solver v1.1.3 that can be triggered by a crafted SMT-LIB input file using set-logic with specific formatting errors, causing DoS. The vulnerability affects CVC5 Solver 1.1.3 (no broader details on affected products beyond CVC5) and is discussed...

CVE-2024-37795

A segmentation fault in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT-LIB input file containing the set-logic command with specific formatting errors...

CVE-2024-37794

Improper input validation in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT2 input file...

CVE-2024-37794

CVE-2024-37794 affects CVC5 Solver v1.1.3. The vulnerability stems from improper input validation in SMT2 input handling, allowing a DoS via a crafted input file. Exploitation details are not provided here, but multiple connected sources confirm the DoS impact. Remediation is to update to a newer...

PT-2024-27754 · Unknown +1 · Cvc5 Solver +1

Name of the Vulnerable Software and Affected Versions: CVC5 Solver version 1.1.3 Description: The issue is related to improper input validation, which allows attackers to cause a Denial of Service DoS by providing a crafted SMT2 input file. Recommendations: For version 1.1.3, update to a newer...

CVC5 Solver Security Vulnerability

cvc5 is a tool in the cvc5 open source. It is used to determine the satisfiability of first-order formulas modulo first-order theories or combinations of these theories. A security vulnerability exists in CVC5 Solver version v1.1.3, which stems from a segmentation error that allows an attacker to...

CVE-2024-37794

Improper input validation in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT2 input file...

CVE-2024-37795

A segmentation fault in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT-LIB input file containing the set-logic command with specific formatting errors...

CVE-2024-37794

Improper input validation in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service DoS via a crafted SMT2 input file...

CVC5 Solver Security Vulnerability

cvc5 is a tool in the cvc5 open source. It is used to determine the satisfiability of first-order formulas modulo first-order theories or combinations of these theories. A security vulnerability exists in CVC5 Solver version v1.1.3 that stems from improper input validation and allows an attacker ...

Fedora: Security Advisory for sat4j (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

A Bootiful Podcast: Timefold Solver AI lead Geoffrey De Smet

Hi, Spring fans! In this installment, I talk to Timefold Solver AI lead Geoffrey De Smet about the amazing new integrations for Spring Boot developers...

ai.timefold.solver:timefold-solver-examples (>=1.1.0 <=1.4.0), ai.timefold.solver:timefold-solver-spring-boot-starter (=1.4.0) +5835 more potentially affected by CVE-2023-6378 via ch.qos.logback:logback-core (>=1.4.0 <=1.4.11)

ch.qos.logback:logback-core MAVEN version =1.4.0, =1.1.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =22.9.0, =23.9.1 and more Source cves: CVE-2023-6378 Source advisory: OSV:GHSA-VMQ6-5M68-F53M...

ai.timefold.solver:timefold-solver-quarkus-benchmark-integration-test (=1.2.0), ai.timefold.solver:timefold-solver-quarkus-devui-integration-test (=1.2.0) +240 more potentially affected by CVE-2023-4853 via io.quarkus:quarkus-vertx-http (>=3.3.0 <=3.3.2)

io.quarkus:quarkus-vertx-http MAVEN version =3.3.0, =0.0.10, =1.8.1, =1.8.1, =1.8.6, =1.8.6, =1.9.0, =1.9.0, =1.10.1, =1.10.1, =1.10.3 and more Source cves: CVE-2023-4853 Source advisory: OSV:GHSA-4F4R-WGV2-JJVG...

UBUNTU-CVE-2020-19725

There is a use-after-free vulnerability in file pddsimplifier.cpp in Z3 before 4.8.8. It occurs when the solver attempt to simplify the constraints and causes unexpected memory access. It can cause segmentation faults or arbitrary code execution...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free when processing files in pddsimplifier.cpp. An attacker can cause segmentation faults or execute arbitrary code by triggering unexpected memory access. This occurs as the solver is trying to simplify the constraints, whic...

ai.timefold.solver:timefold-solver-spring-boot-autoconfigure (>=0.9.38 <=0.9.39), ai.timefold.solver:timefold-solver-spring-boot-starter (>=0.9.38 <=0.9.39) +3807 more potentially affected by CVE-2023-20883 via org.springframework.boot:spring-boot-autoconfigure (>=3.0.0 <=3.0.6)

org.springframework.boot:spring-boot-autoconfigure MAVEN version =3.0.0, =0.9.38, =0.9.38, =2.0.0, =3.0.0, =2.9.9, =0.25.3, =0.1.43, =0.1.65 - cc.vihackerframework:vihacker-annotation =1.0.8.R - cc.vihackerframework:vihacker-auth-starter =1.0.8.R - cc.vihackerframework:vihacker-common-starter...

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +39 more potentially affected by CVE-2022-29211 via tensorflow (>=2.7.0 <=2.7.1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =1.2.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-29211 Source advisory: OSV:GHSA-XRP2-FHQ4-4Q3W...

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +39 more potentially affected by CVE-2022-29209 via tensorflow (>=2.7.0 <=2.7.1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =1.2.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-29209 Source advisory: OSV:GHSA-F4RR-5M7V-WXCW...

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +39 more potentially affected by CVE-2022-29207 via tensorflow (>=2.7.0 <=2.7.1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =1.2.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-29207 Source advisory: OSV:GHSA-5WPJ-C6F7-24X8...