EUVD-2022-3245

Malicious code in bioql PyPI...

EUVD-2022-1934

Malicious code in bioql PyPI...

EUVD-2023-0752

Malicious code in bioql PyPI...

EUVD-2022-3458

Malicious code in bioql PyPI...

EUVD-2022-2438

Malicious code in bioql PyPI...

EUVD-2022-5571

Malicious code in bioql PyPI...

EUVD-2022-4626

Malicious code in bioql PyPI...

GHSA-FMJH-F678-CV3X github.com/nyaruka/phonenumbers Vulnerable to Improper Validation of Syntactic Correctness of Input

Versions of the package github.com/nyaruka/phonenumbers before 1.2.2 are vulnerable to Improper Validation of Syntactic Correctness of Input in the phonenumbers.Parse function. An attacker can cause a panic by providing crafted input causing a "runtime error: slice bounds out of range"...

PT-2025-33544

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: An out-of-bounds access issue exists in cgroup local storage within the Linux kernel. This can be triggered via tail calls between two BPF programs utilizing cgroup local storage with...

CVE-2021-29550

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in tf.rawops.FractionalAvgPool. This is because the...

CVE-2021-29556

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in tf.rawops.Reverse. This is because the...

CVE-2021-29555

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in tf.rawops.FusedBatchNorm. This is because the...

CVE-2021-29557

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in tf.rawops.SparseMatMul. The division by 0 occurs deep in Eigen code because the b tensor is empty. The fix will be included in TensorFlow 2.5.0. We will also...

CVE-2021-29548

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in tf.rawops.QuantizedBatchNormWithGlobalNormalization. This is because the...

CVE-2020-29242

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame...

CVE-2020-29243

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame...

CVE-2020-29245

dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readAtomData...

CVE-2020-29244

dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readTextWithDescrFrame...

CVE-2020-36067

GJSON =v1.6.5 allows attackers to cause a denial of service panic: runtime error: slice bounds out of range via a crafted GET call...

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...