Adobe Illustrator 数字错误漏洞

Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A numeric error vulnerability exists in Adobe Illustrator that originates from an integer underflow and can be exploited by an attacker to cause arbitrary code to be executed...

Chain-Of-Code Collapse: Reasoning Failures in LLMs Via Adversarial Prompting in Code Generation

Large Language Models LLMs have achieved remarkable success in tasks requiring complex reasoning, such as code generation, mathematical problem solving, and algorithmic synthesis -- especially when aided by reasoning tokens and Chain-of-Thought prompting. Yet, a core question remains: do these...

OSV-2025-447 Use-of-uninitialized-value in spvtools::EmitNumericLiteral

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=423059200 Crash type: Use-of-uninitialized-value Crash state: spvtools::EmitNumericLiteral spvtools::disassemble::InstructionDisassembler::EmitOperand spvtools::disassemble::InstructionDisassembler::EmitInstructionImpl...

Valkey 数字错误漏洞

Valkey is a flexible distributed key-value database from the Valkey open source. A numeric error vulnerability exists in Valkey 8.1.1 and earlier versions, which stems from an integer overflow in networking.c and could lead to memory corruption...

CVE-2023-36641

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

CVE-2023-48653

Concrete CMS before 8.5.14 and 9 before 9.2.3 allows Cross Site Request Forgery CSRF via ccm/calendar/dialogs/event/delete/submit. An attacker can force an admin to delete events on the site because the event ID is numeric and sequential...

CVE-2021-29486

cumulative-distribution-function is an open source npm library used which calculates statistical cumulative distribution function from data array of x values. In versions prior to 2.0.0 apps using this library on improper data may crash or go into an infinite-loop. In the case of a nodejs...

CVE-2025-48372 Schule Has Insecure OTP Length, is Susceptible to Brute-Force Attacks

Schule is open-source school management system software. The generateOTP function generates a 4-digit numeric One-Time Password OTP. Prior to version 1.0.1, even if a secure random number generator is used, the short length and limited range 1000–9999 results in only 9000 possible combinations...

CVE-2021-1904

Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

CVE-2021-29513

TensorFlow is an end-to-end open source platform for machine learning. Calling TF operations with tensors of non-numeric types when the operations expect numeric tensors result in null pointer dereferences. The conversion from Python array to C++...

CVE-2020-0221

Airbrush FW's scratch memory allocator is susceptible to numeric overflow. When the overflow occurs, the next allocation could potentially return a pointer within the previous allocation's memory, which could lead to improper memory access.Product: AndroidVersions: Android kernelAndroid ID:...

Adobe Animate Digital Error Vulnerability (CNVD-2025-10669)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from a numeric error vulnerability that originates from an integer underflow, which can be exploited by an attacker to execute arbitrary code...

libsoup 数字错误漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A numeric error vulnerability exists in libsoup that stems from an integer overflow when processing specially crafted multipart messages, which could cause the program to crash...

Adobe Photoshop 数字错误漏洞

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. Adobe Photoshop suffers from a numeric error vulnerability that originates from an integer underflow, which can be exploited by an attacker to execut...

Microsoft Windows Kernel 数字错误漏洞

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. A security vulnerability exists in Microsoft Windows Kernel. An attacker could exploit this vulnerability to obtain sensitive information...

AZL-70135 CVE-2023-53093 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not let histogram values have some modifiers Histogram values can not be strings, stacktraces, graphs, symbols, syscalls, or grouped in buckets or log. Give an error if a value is set to do so. Note, the histogram cod...

UBUNTU-CVE-2023-53093

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not let histogram values have some modifiers Histogram values can not be strings, stacktraces, graphs, symbols, syscalls, or grouped in buckets or log. Give an error if a value is set to do so. Note, the histogram cod...

CLSA-2025-1745053071 ruby: Fix of CVE-2024-49761

CVE-2024-49761: parse XML with many digits in hex numeric character reference &x... to fix ReDoS vulnerability in REXML...

mJson 安全漏洞

mJson is an extremely lightweight Java JSON library from the individual developer Borislav Iordanov. A security vulnerability exists in mJson version 1.2.7, which could lead to a denial of service when processing certain numeric strings...

ts-asn1-der 安全漏洞

ts-asn1-der is a set of utility classes in the Apeleg open source for encoding ASN.1 data according to DER rules. A security vulnerability exists in versions of ts-asn1-der prior to 1.0.4, which stems from a numeric DER encoding error that could lead to an infinite loop...