SUSE CVE-2019-13219

A NULL pointer dereference in the getwindow function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file...

PT-2022-27976 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle version 2.4.0-rc0 Description: The issue allows for code injection in the paddle.audio.functional.get window function, enabling arbitrary code execution. Recommendations: For PaddlePaddle version 2.4.0-rc0, consider applying the...

PaddlePaddle 代码注入漏洞

PaddlePaddle Flying Paddle is an independent R&D deep learning platform open-sourced by China's Flying Paddle PaddlePaddle. PaddlePaddle 2.4 has a security vulnerability , the vulnerability stems from its paddle.audio.functional.getwindow component in the user-supplied winstr call eval allows an...

PT-2022-27677 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.4 Description: The issue arises from the paddle.audio.functional.get window function calling eval on a user-supplied winstr, leading to potential code injection and arbitrary code execution. Recommendations: F...

DEBIAN-CVE-2019-13219

A NULL pointer dereference in the getwindow function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file...

UBUNTU-CVE-2019-13219

A NULL pointer dereference in the getwindow function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file...

Sean Barrett stb_vorbis code issue vulnerability

Sean Barrett stbvorbis is an open source audio codec for decoding ogg vorbis files. Sean Barrett stbvorbis A code issue vulnerability exists in the 'getwindow' function in versions 2019-03-04 and earlier. The vulnerability stems from an improperly designed or implemented code development process...

PT-2019-13186 · No Company · Stb Vorbis

Name of the Vulnerable Software and Affected Versions: stb vorbis versions through 2019-03-04 Description: A NULL pointer dereference in the get window function allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file. Recommendations: For versions through 2019-03-04,...

Apache Wicket Cross-Site Scripting Vulnerability (CNVD-2016-02205)

Apache Wicket is the United States Apache Apache Software Foundation , a set of open source , lightweight , component-based framework , which provides an object-oriented way to develop Web-based dynamic UI applications . A cross-site scripting vulnerability exists in Apache Wicket's...