Lucene search
K

84 matches found

RedHat Linux
RedHat Linux
added 2021/05/19 3:3 p.m.7 views

golang: crypto/elliptic: incorrect operations on the P-224 curve

A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...

6.5CVSS7.3AI score0.02689EPSS
Exploits0References5
OSV
OSV
added 2021/05/14 8:15 p.m.3 views

PYSEC-2021-698

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.SdcaOptimizer triggers undefined behavior due to dereferencing a null pointer. The...

5.5CVSS6.1AI score0.00189EPSS
Exploits1References2
OSV
OSV
added 2021/05/14 8:15 p.m.6 views

PYSEC-2021-169

TensorFlow is an end-to-end open source platform for machine learning. An attacker can force accesses outside the bounds of heap allocated arrays by passing in invalid tensor values to tf.rawops.RaggedCross. This is because the...

7.1CVSS7AI score0.00198EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2021/05/14 7:21 p.m.3 views

CVE-2021-29607

TensorFlow is an end-to-end open source platform for machine learning. Incomplete validation in SparseAdd results in allowing attackers to exploit undefined behavior dereferencing null pointers as well as write outside of bounds of heap allocated data. The...

7.8CVSS7.2AI score0.00234EPSS
Exploits1
Debian CVE
Debian CVE
added 2021/05/14 7:12 p.m.4 views

CVE-2021-29532

TensorFlow is an end-to-end open source platform for machine learning. An attacker can force accesses outside the bounds of heap allocated arrays by passing in invalid tensor values to tf.rawops.RaggedCross. This is because the...

7.1CVSS6.8AI score0.00198EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2021/05/04 7:34 p.m.3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/04/13 11:35 p.m.6 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/03/16 1:19 p.m.3 views

undertow: Possible regression in fix for CVE-2020-10687

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...

5.8CVSS7.3AI score0.01147EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/01/25 7:45 p.m.5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/01/11 9:59 p.m.4 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/12/15 7:37 p.m.5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/12/02 4:36 p.m.4 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/11/30 3:6 p.m.7 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/10/27 2:53 p.m.3 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/10/27 2:47 p.m.4 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/08 10:5 a.m.5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/08/17 1:28 p.m.2 views

Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests

A flaw was discovered in Undertow where HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS attack, or obtain sensitive information from...

6.5CVSS7.3AI score0.02712EPSS
Exploits0References4
OSV
OSV
added 2020/08/06 6:15 p.m.2 views

UBUNTU-CVE-2020-16845

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...

7.5CVSS6.9AI score0.0473EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2020/08/06 5:3 p.m.58 views

CVE-2020-16845

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs...

7.5CVSS7.9AI score0.0473EPSS
Exploits0
NVD
NVD
added 2020/02/07 5:15 a.m.36 views

CVE-2019-14063

Out of bound access due to Invalid inputs to dapm mux settings which results into kernel failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019,...

9.4CVSS9AI score0.00876EPSS
Exploits0References1
Rows per page
Query Builder