5 matches found
CVE-2022-0315
Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0...
CVE-2022-0315
creationtimestamp| type| source ---|---|--- 2022-03-24 11:29:24+00:00| seen| https://t.me/cibsecurity/39475...
CVE-2022-0315
Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0...
CVE-2022-0315 Insecure Temporary File in horovod/horovod
Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0...
CVE-2022-0315
The CVE-2022-0315 issue affects horovod/horovod prior to 0.24.0, where insecure use of tempfile.mktemp() can occur when Horovod runs in an LSF job with jsrun. This could allow a separate process to read or modify the created rank file. The advisory notes that the problem is fixed in commit b96eca...