PT-2024-26140 · Unknown · Pvr Bridge Kernel Module

Name of the Vulnerable Software and Affected Versions: PVR bridge kernel module affected versions not specified Description: The issue is related to a logic error in the PVRSRV MMap function of pvr bridge k.c, which could lead to arbitrary code execution. This might result in local escalation of...

SUSE CVE-2019-12222

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9. There is an out-of-bounds read in the function SDLInvalidateMap at video/SDLpixels.c...

SUSE CVE-2021-37679

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

PT-2022-14794 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a precondition check failure in the sysmmu map function of sysmmu.c. This could lead to a local escalation of privilege, requiring System execution...

DEBIAN-CVE-2021-45833

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5Dcreatechunkfilemaphyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service context-dependent...

GHSA-5HPJ-M323-CPHM Double free in through

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...

Double free in through

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...

GHSA-G8WG-CJWC-XHHP Heap OOB in nested `tf.map_fn` with `RaggedTensor`s

Impact It is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tensor and fills output buffer with uninitialized contents from the heap: python import...

CVE-2021-37679

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

PYSEC-2021-301

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

PYSEC-2021-301

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

PYSEC-2021-790

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

CVE-2021-37679

TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a tf.mapfn within another tf.mapfn call. However, if the input tensor is a RaggedTensor and there is no function signature provided, code assumes the output is a fully specified tens...

PT-2021-21797 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow version 2.5.1 TensorFlow version 2.4.3 TensorFlow version 2.3.4 Description: The issue arises when nesting a tf.map fn within another tf.map fn call, specifically with RaggedTensor inputs and no...

Rust Resource Management Error Vulnerability (CNVD-2021-31920)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in through crate for Rust 2021-02-18 and earlier versions, which stems from a double release in the map function. No details of the vulnerability are provided at...

CVE-2021-29940

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...

Double free

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...

CVE-2021-29940

CVE-2021-29940 affects the Rust crate and related advisories: the through/through_and code path can trigger a double free when the mapping function panics. The root cause involves duplicating ownership via ptr::read on a mutable reference, causing both the original and the duplicated object to be...

Rust 资源管理错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in through crate for Rust 2021-02-18 and earlier versions, which stems from a double release in the map function. No details of the vulnerability are provided at...

Deserializing an array can drop uninitialized memory on panic

The readbytesdefaultle function for T; n arrays, used to deserialize arrays of T from bytes created a T; n array with std::mem::uninitialized and then called T's deserialization method. If T's deserialization method panicked, the uninitialized memory could drop invalid objects. This flaw was...