926 matches found
PYSEC-2021-758
TensorFlow is an end-to-end open source platform for machine learning. When a user does not supply arguments that determine a valid sparse tensor, tf.rawops.SparseTensorSliceDataset implementation can be made to dereference a null pointer. The implementation has some argument validation but fails...
PYSEC-2021-269
TensorFlow is an end-to-end open source platform for machine learning. When a user does not supply arguments that determine a valid sparse tensor, tf.rawops.SparseTensorSliceDataset implementation can be made to dereference a null pointer. The implementation has some argument validation but fails...
[SECURITY] Fedora 33 Update: redis-6.0.15-1.fc33
Redis is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing se...
Xen 安全漏洞
Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen...
Fedora: Security Advisory for redis (FEDORA-2021-0ad4bec5b1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 34 Update: redis-6.2.4-1.fc34
Redis is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing se...
[SECURITY] Fedora 33 Update: redis-6.0.13-1.fc33
Redis is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing se...
[SECURITY] Fedora 34 Update: redis-6.2.3-1.fc34
Redis is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing se...
A Tip For Easy SQL-based Big Data Analysis: Use a Temporary Dataset
Every once in a while we’re required to analyze big data on a wide time range. Here’s a common example: “Can you analyze what happened during 2020? And don’t forget to compare it to 2019”. Questions like this are hard to answer in the big data world: Queries may take a long time to process - and...
McAfee ATR Thinks in Graphs | McAfee Blogs
ARCHIVED STORY McAfee ATR Thinks in Graphs By Valentine Mairet · MAR 08, 2021 · 19 MIN READ 0. Introduction John Lambert, a distinguished researcher specializing in threat intelligence at Microsoft, once said these words that changed perspectives: “Defenders think in lists. Attackers think in...
McAfee ATR Thinks in Graphs | McAfee Blogs
ARCHIVED STORY McAfee ATR Thinks in Graphs By Valentine Mairet · MAR 08, 2021 · 19 MIN READ 0. Introduction John Lambert, a distinguished researcher specializing in threat intelligence at Microsoft, once said these words that changed perspectives: “Defenders think in lists. Attackers think in...
CVE-2021-26702
EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/datasetdictionary URI...
Cross site scripting
EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/datasetdictionary URI...
CVE-2021-26702
EPrints 3.4.2 is affected by a Reflected Cross‑Site Scripting (XSS) vulnerability in the dataset parameter of the cgi/dataset_dictionary URI. The issue allows an attacker to inject JavaScript into the response, which could be executed in a victim’s browser, potentially leading to session hijackin...
CVE-2021-26702
EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/datasetdictionary URI...
EPrints 跨站脚本漏洞
EPrints is a free open source software package for building open access repositories compliant with the OAI-PMH protocol. A reflected cross-site scripting vulnerability exists in the dataset parameter of the cgi/datasetdictionary URI in EPrints 3.4.2. No detailed vulnerability details are provide...
Lukeed Dset 安全漏洞
Lukeed Dset is Lukeed individual developers of a Javascript-based language can be based on the dictionary type object assignment code library . A security vulnerability exists in Lukeed dset versions 1.0.0 through 2.0.1, which is a prototype contamination that can be exploited by an attacker to...
SoReL-20M: A Huge Dataset of 20 Million Malware Samples Released Online
Cybersecurity firms Sophos and ReversingLabs on Monday jointly released the first-ever production-scale malware research dataset to be made available to the general public that aims to build effective defenses and drive industry-wide improvements in security detection and response. "SoReL-20M"...
SoReL-20M: A Huge Dataset of 20 Million Malware Samples Released Online
Cybersecurity firms Sophos and ReversingLabs on Monday jointly released the first-ever production-scale malware research dataset to be made available to the general public that aims to build effective defenses and drive industry-wide improvements in security detection and response. "SoReL-20M"...
OSV-2020-2259 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28556 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::Dataset::ConvertTo...