719 matches found
EUVD-2024-41287
Malicious code in bioql PyPI...
EUVD-2024-48728
Malicious code in bioql PyPI...
EUVD-2023-33465
Malicious code in bioql PyPI...
EUVD-2023-33472
Malicious code in bioql PyPI...
EUVD-2023-33471
Malicious code in bioql PyPI...
EUVD-2023-33469
Malicious code in bioql PyPI...
EUVD-2023-33462
Malicious code in bioql PyPI...
Untrusted Pointer Dereference
Overview Affected versions of this package are vulnerable to Untrusted Pointer Dereference in the memory.fill process when the first operand memory address pointer is greater than or equal to 2147483648 bytes in LLVM-JIT mode. An attacker can cause the runtime to hang or crash by executing a...
AZL-67617 CVE-2025-58749 affecting package fluent-bit for versions less than 3.0.6-4
WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. In WAMR versions prior to 2.4.2, when running in LLVM-JIT mode, the runtime cannot exit normally when executing WebAssembly programs containing a memory.fill instruction where the first operand memory address...
CVE-2025-58749
CVE-2025-58749 affects WebAssembly Micro Runtime (WAMR) prior to version 2.4.2. In LLVM-JIT mode, WebAssembly programs containing a memory.fill instruction with the first operand (memory address pointer) >= 2 GiB could cause the runtime to hang (release builds) or crash (debug builds) due to i...
CVE-2025-58749 WAMR runtime hangs or crashes with large memory.fill addresses in LLVM-JIT mode
WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. In WAMR versions prior to 2.4.2, when running in LLVM-JIT mode, the runtime cannot exit normally when executing WebAssembly programs containing a memory.fill instruction where the first operand memory address...
Linux Distros Unpatched Vulnerability : CVE-2015-3027
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Clang in LLVM, as used in Apple Xcode before 6.3, performs incorrect register allocation in a way that triggers stack storage for stack cookie pointers, which...
Linux Distros Unpatched Vulnerability : CVE-2023-26924
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockRegion. NOTE: third parties dispute this because the LLVM security policy excludes Language...
Linux Distros Unpatched Vulnerability : CVE-2023-29941
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llvm-project commit a0138390 was discovered to contain a segmentation fault via the component matchAndRewriteSortOpmlir::sparsetensor::SortOp. CVE-2023-29941 No...
Linux Distros Unpatched Vulnerability : CVE-2023-29933
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llvm-project commit bd456297 was discovered to contain a segmentation fault via the component mlir::Block::getArgument. CVE-2023-29933 Note that Nessus relies o...
Linux Distros Unpatched Vulnerability : CVE-2023-29935
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements.countop && operation was already replaced. CVE-2023-29935 Note that...
Linux Distros Unpatched Vulnerability : CVE-2023-29942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::Type::isamlir::LLVM::LLVMVoidType. CVE-2023-29942 Note that...
SUSE CVE-2024-58262
The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is removed by LLVM...
Duplicate Advisory: curve25519-dalek has timing variability in `curve25519-dalek`'s `Scalar29::sub`/`Scalar52::sub`
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-x4gp-pqpj-f43q. This link is maintained to preserve external references. Original Description The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is...
DEBIAN-CVE-2024-58262
The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is removed by LLVM...