CVE-2022-1941 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2022-1941 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-39353 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2022-39353 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-3115 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2021-3115 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-37616 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2022-37616 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2019-9514 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2019-9514 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2020-15586 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2020-15586 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2019-9512 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2019-9512 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2020-28366 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2020-28366 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-26159 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2023-26159 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

AZL-38299 CVE-2023-26159 affecting package python-tensorboard for versions less than 2.16.2-1

Versions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by the url.parse function. When new URL throws an error, it can be manipulated to misinterpret the hostname. An attacker could exploit this weakness to redirect...

CVE-2023-33953 affecting package python-tensorboard for versions less than 2.11.0-2

CVE-2023-33953 affecting package python-tensorboard for versions less than 2.11.0-2. A patched version of the package is available...

AZL-39394 CVE-2023-33953 affecting package python-tensorboard for versions less than 2.11.0-2

gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: - Unbounded memory buffering in the HPACK parser - Unbounded CPU consumption ...

AZL-38671 CVE-2022-39353 affecting package python-tensorboard for versions less than 2.16.2-1

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the childNodes collection of the Document, without reporting any error or...

AZL-38290 CVE-2022-37616 affecting package python-tensorboard for versions less than 2.16.2-1

A prototype pollution vulnerability exists in the function copy in dom.js in the xmldom published as @xmldom/xmldom package before 0.8.3 for Node.js via the p variable. NOTE: the vendor states "we are in the process of marking this report as invalid"; however, some third parties takes the positio...

AZL-39061 CVE-2022-1941 affecting package python-tensorboard for versions less than 2.16.2-1

A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of...

AZL-38572 CVE-2021-3115 affecting package python-tensorboard for versions less than 2.16.2-1

Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo for example, cgo can execute a gcc program from an untrusted download...

AZL-38452 CVE-2020-28366 affecting package python-tensorboard for versions less than 2.16.2-1

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

AZL-38206 CVE-2020-15586 affecting package python-tensorboard for versions less than 2.16.2-1

Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as demonstrated by the httputil.ReverseProxy Handler, because it reads a request body and writes a response at the same time...

AZL-38389 CVE-2019-9514 affecting package python-tensorboard for versions less than 2.16.2-1

Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RSTSTREAM frames from the peer. Depending on how the peer queues the...

AZL-38449 CVE-2019-9512 affecting package python-tensorboard for versions less than 2.16.2-1

Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU,...