sqlite: integer overflow in sqlite3_str_vappendf function in printf.c

An integer overflow flaw was found in the SQLite implementation of the printf function. This flaw allows an attacker who can control the precision of floating-point conversions, to crash the application, resulting in a denial of service...

CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

CVE-2021-29529

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a heap buffer overflow in tf.rawops.QuantizedResizeBilinear by manipulating input values so that float rounding results in off-by-one error in accessing image elements. This is because the...

Design/Logic Flaw

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

UBUNTU-CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

PYSEC-2021-457

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a heap buffer overflow in tf.rawops.QuantizedResizeBilinear by manipulating input values so that float rounding results in off-by-one error in accessing image elements. This is because the...

Heap overflow

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a heap buffer overflow in tf.rawops.QuantizedResizeBilinear by manipulating input values so that float rounding results in off-by-one error in accessing image elements. This is because the...

PYSEC-2021-457

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a heap buffer overflow in tf.rawops.QuantizedResizeBilinear by manipulating input values so that float rounding results in off-by-one error in accessing image elements. This is because the...

CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

CVE-2020-27769

In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...

Security update for nim (moderate)

openSUSE Security Update: Security update for nim Announcement ID: openSUSE-SU-2021:0618-1 Rating: moderate References: 1185083 1185084 1185085 Cross-References: CVE-2021-21372 CVE-2021-21373 CVE-2021-21374 CVSS scores: CVE-2021-21374 NVD : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affecte...

SUSE-SU-2021:0528-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2021-20176: Fixed an issue where processing a crafted file could lead to division by zero bsc1181836. - CVE-2020-27767: outside the range of representable values of type 'float' at MagickCore/quantum.h bsc1179322...

PT-2021-7292 · Php +9 · Php +9

Name of the Vulnerable Software and Affected Versions: PHP versions 7.4.x through 7.4.27 PHP versions 8.0.x through 8.0.15 PHP versions 8.1.x through 8.1.2 Description: The issue is related to the use of filter functions with the FILTER VALIDATE FLOAT filter and min/max limits in PHP. If the filt...

ImageMagick code issue vulnerability (CNVD-2021-11326)

ImageMagick is a suite of open source image processing software. The software can read, convert or write images in a variety of formats. A code issue vulnerability exists in versions of ImageMagick prior to 7.0.9-0, which stems from an out-of-range representable value range for the unsigned float...

Imagemagick Studio ImageMagick 输入验证错误漏洞

ImageMagick is a suite of open source image processing software. The software can read, convert or write images in a variety of formats. A code issue vulnerability exists in versions of ImageMagick prior to 7.0.9-0, which stems from an out-of-range representable value range for the unsigned float...

CVE-2020-35923

An issue was discovered in the ordered-float crate before 1.1.1 and 2.x before 2.0.1 for Rust. A NotNan value can contain a NaN...

CVE-2020-35923

An issue was discovered in the ordered-float crate before 1.1.1 and 2.x before 2.0.1 for Rust. A NotNan value can contain a NaN...

Design/Logic Flaw

An issue was discovered in the ordered-float crate before 1.1.1 and 2.x before 2.0.1 for Rust. A NotNan value can contain a NaN...

CVE-2020-35923

CVE-2020-35923 concerns the Rust crate ordered-float . A NotNan value can contain a NaN after certain assignment operators (e.g., NotNan::add_assign , NotNan::mul_assign ); unsafe code paths in safe comparisons assume non-NaN, risking undefined behavior. Affected versions are before 1.1.1 and 2.x...