Lucene search
K

1886 matches found

PyPA
PyPA
added 2019/12/16 9:15 p.m.7 views

PYSEC-2019-234

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...

9.8CVSS7.4AI score0.00777EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2019/12/16 9:15 p.m.5 views

PYSEC-2019-227

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...

9.8CVSS7.4AI score0.00777EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2019/12/16 8:15 p.m.3 views

CVE-2019-16778

In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...

9.8CVSS7.4AI score0.00777EPSS
Exploits0
CNVD
CNVD
added 2019/12/09 12:0 a.m.3 views

Linux kernel buffer overflow vulnerability (CNVD-2019-44743)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the 'f2fsbuildsegmentmanager' function in the fs/f2fs/segment.c file in Linux kernel version 5.0.21. The vulnerability stems...

7.8CVSS6.8AI score0.02014EPSS
Exploits1References1
OSV
OSV
added 2019/12/08 2:15 a.m.2 views

DEBIAN-CVE-2019-19449

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...

7.8CVSS6.4AI score0.02014EPSS
Exploits1References1
Prion
Prion
added 2019/12/08 2:15 a.m.30 views

Design/Logic Flaw

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...

6.8CVSS6.8AI score0.02014EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2019/12/08 2:15 a.m.3 views

UBUNTU-CVE-2019-19449

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...

7.8CVSS6.7AI score0.02014EPSS
Exploits1References8
Cvelist
Cvelist
added 2019/12/08 1:14 a.m.29 views

CVE-2019-19449

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...

6.9AI score0.02014EPSS
Exploits1References2
OSV
OSV
added 2019/12/06 6:15 p.m.4 views

CVE-2019-18671

Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by unauthenticated attacke...

9.8CVSS6.1AI score0.03271EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/12/06 5:53 p.m.29 views

CVE-2019-18671

Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by unauthenticated attacke...

9.7AI score0.03271EPSS
Exploits0References4
CVE
CVE
added 2019/12/06 5:53 p.m.126 views

CVE-2019-18671

CVE-2019-18671 affects the ShapeShift KeepKey hardware wallet. Insufficient checks in USB packet handling allow out-of-bounds writes in the .bss segment on firmware up to 6.2.1, with potential code execution or other impact. The issue can be triggered by unauthenticated users and is reachable via...

10CVSS9.6AI score0.03271EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/19 12:0 a.m.5 views

The vulnerability of the Segment component in Oracle Retail Customer Management and Segmentation Foundation software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Segment component of the Oracle Retail Customer Management and Segmentation Foundation software lies in the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected...

5.9CVSS6.8AI score0.01373EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/18 12:0 a.m.5 views

The vulnerability of the Segment component in the Oracle Retail Customer Management and Segmentation software application allows a hacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Segment component in Oracle Retail Customer Management and Segmentation Foundation software relates to access control deficiencies. Exploiting this vulnerability could allow an attacker operating remotely to modify, add, or delete data, or gain unauthorized access to...

4.9CVSS6.5AI score0.00726EPSS
Exploits0References3Affected Software1
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/11/04 6:22 p.m.35 views

Tips to Accelerating PCI Data Security Standard Projects with Deep Security as a Service

Does your organization need to meet PCI DSS requirements? Are you struggling with multiple security tools? Or stretching your already overstretched team to prepare for an audit? Time to hit the accelerator with Trend Micro! If your applications deal with credit or payment card data, you need to g...

0.7AI score
Exploits0
Cvelist
Cvelist
added 2019/10/16 5:40 p.m.24 views

CVE-2019-2883

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Segment. The supported version that is affected is 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

4.3AI score0.00726EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.4 views

The vulnerability of the mkv::virtual_segment_c::seek() function in the VideoLAN VLC media player software allows a attacker to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the mkv::virtualsegmentc::seek function in the VideoLAN VLC media player software relates to its use after deallocation. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...

7.8CVSS5.5AI score0.01455EPSS
Exploits0References7Affected Software4
Symantec
Symantec
added 2019/10/15 12:0 a.m.15 views

Oracle Retail Customer Management and Segmentation Foundation Remote Security Vulnerability

Description Oracle Retail Customer Management and Segmentation Foundation is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Segment' component is affected. This vulnerability affects the following supported versions: 17.0 Technologies...

1.4AI score
Exploits0References1Affected Software1
Akamai Blog
Akamai Blog
added 2019/10/11 8:0 p.m.139 views

Optimizing Video Streaming Performance with Origin-Assisted Prefetching

Online video streaming is everywhere today. It's available on the smallest hand-held devices to the largest of screens in our living rooms. Magically and for the most part, it works and provides a very captivating experience. However, if you step back to look at the overall architecture, media...

6.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2019/10/11 8:0 p.m.116 views

How to Scale Addressable Advertising with Low Latency for Live Streaming

Written by: David Springfall, Founder and CTO of Yospace Under David's technical and strategic leadership, Yospace pioneered server-side ad insertion and established itself as the global leader in OTT stream monetisation. The Yospace technology supports full one-to-one personalisation and provide...

0.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/10 10:3 p.m.30 views

CVE-2017-5482

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS1.4AI score0.05504EPSS
Exploits0References1
Rows per page
Query Builder