clip-jax (=0.0.5) potentially affected by CVE-2022-35983 via tensorflow-cpu (=2.9.0)

tensorflow-cpu PYPI version =2.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - clip-jax =0.0.5 Source cves: CVE-2022-35983 Source advisory: OSV:GHSA-M6VP-8Q9J-WHX4...

GHSA-V62J-CXHH-FQ22 graphql-java vulnerable to Denial of Service via GraphQL query that consumes CPU resources

graphql-java before 19.0, 18.3, and 17.4 is vulnerable to Denial of Service. An attacker send a malicious GraphQL query that consumes CPU resources. The fixed versions are 19.0, 18.3, and 17.4...

PT-2022-6750

Name of the Vulnerable Software and Affected Versions Python versions prior to 3.11.1 Python versions prior to 3.10.9 Python versions prior to 3.9.16 Python versions prior to 3.8.16 Python versions prior to 3.7.16 Description An issue exists in the IDNA RFC 3490 decoder, where an unnecessary...

AMD CPU 安全漏洞

AMD CPUs are a family of CPUs from Ultraviolet Semiconductor AMD. The AMD CPUs suffer from a security vulnerability that stems from a faulty training branch prediction of a return instruction that may allow execution of arbitrary speculative code under certain microarchitecture-related conditions...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in all...

PT-2022-19464 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.histogram fixed width is vulnerable to a crash when the values...

CVE-2022-29792

The chip component has a vulnerability of disclosing CPU SNs.Successful exploitation of this vulnerability may affect data confidentiality...

AMD CPUs 安全漏洞

AMD CPUs are a family of CPUs from AMD in the United States. A security vulnerability exists in AMD CPUs. An attacker exploits this vulnerability to trigger a CPU core hang using specific code from an unprivileged VM, leading to a potential denial of service...

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker who controls the HTTP server to make the client script enter an infinite loop consuming CPU time. The highest threat from this vulnerability is to system availability.

...

PT-2022-2953 · Amd +8 · Amd Cpus +8

Name of the Vulnerable Software and Affected Versions: AMD CPUs affected versions not specified Description: The issue is related to the LFENCE/JMP module in AMD CPUs, specifically concerning the branch prediction mechanism. This allows an attacker to access protected memory from a program withou...

lsmmdma (>=0.0.4 <=0.1.7), tpu-tf2 (=1.0.0) potentially affected by CVE-2022-23568 via tensorflow-cpu (=2.7.0)

tensorflow-cpu PYPI version =2.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - lsmmdma =0.0.4, =0.1.7 - tpu-tf2 =1.0.0 Source cves: CVE-2022-23568 Source advisory: OSV:GHSA-6445-FM66-FVQ2...

HUAWEI EMUI 安全漏洞

Huawei EMUI is an Android-based mobile operating system developed by the Chinese company Huawei Huawei. Huawei EMUI suffers from a code execution vulnerability that originates from a security privilege misconfiguration vulnerability in ACPU. An attacker can exploit this vulnerability to execute...

lsmmdma (>=0.0.4 <=0.1.7), medaka-cpu (>=1.6.0 <=1.7.2) +1 more potentially affected by CVE-2022-23592 via tensorflow-cpu (>=2.7.0 <=2.7.4)

tensorflow-cpu PYPI version =2.7.0, =0.0.4, =1.6.0, =1.7.2 - tpu-tf2 =1.0.0 Source cves: CVE-2022-23592 Source advisory: OSV:PYSEC-2022-101...

多款Qualcomm产品安全漏洞

The Qualcomm QCA6574AU and others are products of Qualcomm Incorporated, U.S.A. The QCA6574AU is a central processing unit CPU product.The SDX24 is a modem.The SDX55 is a modem.The QCA6574AU is a central processing unit CPU product.The SDX24 is a modem.The SDX55 is a modem. A security vulnerabili...

Advanced Micro Devices Cpu 信息泄露漏洞

The Advanced Micro Devices Cpu Amd Cpu is an excellent central processor for Amd from Advanced Micro Devices, USA . The Advanced Micro Devices Cpu has a security vulnerability that can be exploited by an attacker to cause kernel address space information disclosure on some AMD cpus utilizing the...

多款Qualcomm产品授权问题漏洞

Qualcomm QCA6574AU and others are products of Qualcomm Incorporated Qualcomm.QCA6574AU is a central processing unit CPU product.APQ8053 is a central processing unit CPU product.SDX55 is a modem. Multiple Qualcomm Products WIGIGI Host An authorization issue vulnerability exists that stems from...

hw: Fast forward store predictor

A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU...

hw: Fast forward store predictor

A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU...

hw: Fast forward store predictor

A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +95 more potentially affected by CVE-2021-37657 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2021-37657 Source advisory: OSV:GHSA-5XWC-MRHX-5G3M...