3 matches found
CVE-2023-38671
Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible...
paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2023-38671 via paddlepaddle (=1.8.5)
paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves:...
CVE-2023-38671
CVE-2023-38671 describes a heap buffer overflow in PaddlePaddle's paddle.trace, affecting PaddlePaddle prior to version 2.5.0. The underlying issue allows heap-based corruption that can lead to denial of service and information disclosure (as stated by multiple sources); there is no explicit expl...