EUVD-2022-33590

Malicious code in bioql PyPI...

Interesting new filters on Spring Cloud Gateway 4.0

Spring Cloud Gateway 4.0 is finally here! Thanks to our community contributions we have introduced new features and interesting filters. This blog post details new noteworthy and explains some of the new filters included, how they work and how you can use it to provide more insights into your...

PT-2022-23083 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.10.0 TensorFlow versions 2.9.1 and earlier TensorFlow versions 2.8.1 and earlier TensorFlow versions 2.7.2 and earlier Description: The issue arises when the LRNGrad function is given an output image input tenso...

envoy: oauth filter calls continueDecoding() from within decodeHeaders()

A flaw was found in Envoy. The OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT in newer versions and corrupts memory on earlier versions...

Envoy 资源管理错误漏洞

Envoy is an open source distributed proxy server.A security vulnerability exists in versions of Envoy prior to 1.22.1, which stems from the fact that OAuth filters will attempt to invoke the remaining filters in the chain after issuing a local response. No detailed vulnerability details are...

PT-2021-19927 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.19.1 Envoy versions prior to 1.18.4 Envoy versions prior to 1.17.4 Envoy versions prior to 1.16.5 Description: Envoy is an open source L7 proxy and communication bus designed for large modern service-oriented...