81 matches found
CVE-2022-23591
Tensorflow is an Open Source Machine Learning Framework. The GraphDef format in TensorFlow does not allow self recursive functions. The runtime assumes that this invariant is satisfied. However, a GraphDef containing a fragment such as the following can be consumed when loading a SavedModel. This...
CVE-2025-68361
In the Linux kernel, the following vulnerability has been resolved: erofs: limit the level of fs stacking for file-backed mounts Otherwise, it could cause potential kernel stack overflow e.g., EROFS mounting itself...
Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities
Summary IBM Guardium Data Security Center has addressed these vulnerabilties with an update. Vulnerability Details CVEID:CVE-2025-41249 DESCRIPTION: The Spring Framework annotation detection mechanism may not correctly resolve annotations on methods within type hierarchies with a parameterized...
Security Bulletin: vulerability in IBM Spectrum Symphony with jackson-core
Summary vulerability in IBM Spectrum Symphony with jackson-core Vulnerability Details CVEID:CVE-2025-52999 DESCRIPTION: jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an...
Security Bulletin: Vulnerability in Apache Commons Lang (CVE-2025-48924) affects IBM PowerVM Novalink.
Summary Apache Commons Lang is used by IBM PowerVM Novalink. IBM PowerVM Novalink has addressed the applicable CVE CVE-2025-48924. Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting...
Xpdf 安全漏洞
Xpdf is a free PDF viewer and toolkit from Xpdf, including text extractor, image converter, HTML converter, and more. A security vulnerability exists in Xpdf 4.05 and earlier versions, which stems from a loop in the PDF object in CMap that leads to infinite recursion, potentially resulting in a...
EUVD-2020-3557
Malware in sbrugna...
EUVD-2017-17124
Malware in sbrugna...
EUVD-2019-2391
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986595)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986595 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986904)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986904 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: improve size validations for received domain records The function tipcmonrcv allows a node ...
EUVD-2025-20169
Malicious code in bioql PyPI...
EUVD-2024-44044
Malicious code in bioql PyPI...
EUVD-2025-19230
Malicious code in bioql PyPI...
EUVD-2024-53343
Malicious code in bioql PyPI...
EUVD-2023-57710
Malicious code in bioql PyPI...
EUVD-2025-20171
Malicious code in bioql PyPI...
CVE-2023-53428 powercap: arm_scmi: Remove recursion while parsing zones
In the Linux kernel, the following vulnerability has been resolved: powercap: armscmi: Remove recursion while parsing zones Powercap zones can be defined as arranged in a hierarchy of trees and when registering a zone with powercapregisterzone, the kernel powercap subsystem expects this to happen...
Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in jackson-core-2.10.3.jar
Summary IBM Watson Discovery Cartridge contains a vulnerable version of jackson-core-2.10.3.jar Vulnerability Details CVEID:CVE-2025-52999 DESCRIPTION: jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. In versions prior ...
Important: Red Hat Security Advisory: pki-deps:10.6 security update
An update for the pki-deps:10.6 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A...