4 matches found
CVE-2025-61677
DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization of untrusted data because of the way the DataChain library reads serialized objects from environment variables such as DATACHAINMETASTORE and...
CVE-2025-61677
DataChain is a Python-based AI-data warehouse. Versions 0.34.1 and earlier are vulnerable to deserialization of untrusted data caused by how the loader.py reads serialized objects from environment variables (e.g., DATACHAIN__METASTORE, DATACHAIN__WAREHOUSE). An attacker who can set these environm...
CVE-2019-5611
In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r350829, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, a missing check in the function to arrange data in a chain of mbufs could cause data returned not to be contiguou...
Malicious code in data.chain.link (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 58a230e9b5eba32c49344c78befcec5d51a3cc474763ee470601d33f2d253d2f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...