Lucene search
K

164 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/27 4:55 a.m.1 views

CVE-2026-34353

In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed...

5.9CVSS5.9AI score0.00114EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/27 4:55 a.m.27 views

CVE-2026-34353

In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed...

5.9CVSS0.00114EPSS
Exploits0References2
CVE
CVE
added 2026/03/27 4:55 a.m.26 views

CVE-2026-34353

CVE-2026-34353 affects OCaml up to and including 4.14.3. The Bigarray.reshape operation may trigger an integer overflow when processing untrusted input, allowing reading of arbitrary memory. CVSS indicates a local, high-complexity issue with no user interaction and potential confidentiality impac...

5.9CVSS5.9AI score0.00114EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/27 4:55 a.m.3 views

CVE-2026-34353

In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed...

5.9CVSS5.9AI score0.00114EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.3 views

PT-2026-28619

Name of the Vulnerable Software and Affected Versions OCaml versions through 4.14.3 Description The Bigarray.reshape function in OCaml versions through 4.14.3 contains an integer overflow issue. This can lead to arbitrary memory being read when processing untrusted data. The function...

5.9CVSS6AI score0.00114EPSS
Exploits0References24
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.9 views

ocaml 输入验证错误漏洞

OCaml is an open-source functional programming language and its compiler developed by OCaml. Versions of ocaml 4.14.3 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows in Bigarray.reshape, which could lead to arbitrary memo...

5.9CVSS5.9AI score0.00114EPSS
Exploits0References2
OSV
OSV
added 2026/02/18 3:18 p.m.8 views

AZL-77874 CVE-2025-71225 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: md: suspend array while updating raiddisks via sysfs In raid1reshape, freezearray is called before modifying the r1bio memory pool conf-r1biopool and conf-raiddisks, and unfreezearray is called after the update is completed...

5.3CVSS5.6AI score0.00084EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/29 3:26 a.m.18 views

CVE-2025-71006

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

6.5CVSS5.9AI score0.00277EPSS
Exploits1References1
Snyk
Snyk
added 2026/01/28 9:50 p.m.2 views

Division by zero

Overview Affected versions of this package are vulnerable to Division by zero via the oneflow.reshape process. An attacker can cause the application to crash or become unresponsive by submitting specially crafted input that triggers a floating point exception. Remediation There is no fixed versio...

7.5CVSS5.5AI score0.00277EPSS
Exploits1References2
NVD
NVD
added 2026/01/28 9:16 p.m.10 views

CVE-2025-71006

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

6.5CVSS0.00277EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.7 views

Oneflow security vulnerabilities

Oneflow is an open-source deep learning framework developed by Oneflow. Version 0.9.0 of Oneflow contains a security vulnerability. This vulnerability stems from floating-point exceptions in the reshape component of Oneflow, which could lead to denial-of-service attacks...

6.5CVSS5.8AI score0.00277EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.10 views

PT-2026-5215

Name of the Vulnerable Software and Affected Versions OneFlow version 0.9.0 Description A crafted input to the oneflow.reshape component can trigger a floating point exception FPE, leading to a Denial of Service DoS. Recommendations At the moment, there is no information about a newer version tha...

5.8AI score0.00277EPSS
Exploits1References4
CVE
CVE
added 2026/01/28 12:0 a.m.18 views

CVE-2025-71006

The CVE-2025-71006 entry concerns OneFlow v0.9.0, where a flaw in the oneflow.reshape component can trigger a floating point exception (FPE) and cause a Denial of Service (DoS) via a crafted input. Multiple connected sources (Red Hat, NVD, OSV, CVE listings, and vulnerability trackers) confirm th...

6.5CVSS5.9AI score0.00277EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/28 12:0 a.m.4 views

CVE-2025-71006

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

5.9AI score0.00277EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/28 12:0 a.m.6 views

EUVD-2025-206419

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

5.9AI score0.00277EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/28 12:0 a.m.29 views

CVE-2025-71006

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

0.00277EPSS
Exploits1References2
OSV
OSV
added 2026/01/28 12:0 a.m.7 views

CVE-2025-71006

A floating point exception FPE in the oneflow.reshape component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted input...

6.5CVSS5.4AI score0.00277EPSS
Exploits1References4
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: md/raid1: The issue of stack memory usage after a return in the raid1reshape function has been fixed. In the raid1reshape function, the newpool is allocated on the stack and assigned to conf-r1biopool. This causes...

7.1CVSS6.5AI score0.00165EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992787)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992787 advisory. In the Linux kernel, the following vulnerability has been resolved: md-raid10: fix KASAN warning There's a KASAN warning in raid10removedisk when running the lvm tes...

7.1CVSS5.8AI score0.00204EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/06 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990596 advisory. In the Linux kernel, the following vulnerability has been resolved: md/raid5: avoid BUGON while continue reshape after reassembling Currently, mdadm support...

5.5CVSS6.1AI score0.00226EPSS
Exploits0References3
Rows per page
Query Builder