1886 matches found
PYSEC-2019-234
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...
PYSEC-2019-227
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...
CVE-2019-16778
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. In this case datasize and numsegments fields are truncated from int64 to int32 and can produce negative numbers, resulting in accessing out of bounds heap memory. Thi...
Linux kernel buffer overflow vulnerability (CNVD-2019-44743)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the 'f2fsbuildsegmentmanager' function in the fs/f2fs/segment.c file in Linux kernel version 5.0.21. The vulnerability stems...
DEBIAN-CVE-2019-19449
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...
Design/Logic Flaw
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...
UBUNTU-CVE-2019-19449
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...
CVE-2019-19449
In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c, related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...
CVE-2019-18671
Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by unauthenticated attacke...
CVE-2019-18671
Insufficient checks in the USB packet handling of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow out-of-bounds writes in the .bss segment via crafted messages. The vulnerability could allow code execution or other forms of impact. It can be triggered by unauthenticated attacke...
CVE-2019-18671
CVE-2019-18671 affects the ShapeShift KeepKey hardware wallet. Insufficient checks in USB packet handling allow out-of-bounds writes in the .bss segment on firmware up to 6.2.1, with potential code execution or other impact. The issue can be triggered by unauthenticated users and is reachable via...
The vulnerability of the Segment component in Oracle Retail Customer Management and Segmentation Foundation software allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Segment component of the Oracle Retail Customer Management and Segmentation Foundation software lies in the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected...
The vulnerability of the Segment component in the Oracle Retail Customer Management and Segmentation software application allows a hacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.
The vulnerability of the Segment component in Oracle Retail Customer Management and Segmentation Foundation software relates to access control deficiencies. Exploiting this vulnerability could allow an attacker operating remotely to modify, add, or delete data, or gain unauthorized access to...
Tips to Accelerating PCI Data Security Standard Projects with Deep Security as a Service
Does your organization need to meet PCI DSS requirements? Are you struggling with multiple security tools? Or stretching your already overstretched team to prepare for an audit? Time to hit the accelerator with Trend Micro! If your applications deal with credit or payment card data, you need to g...
CVE-2019-2883
Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Segment. The supported version that is affected is 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
The vulnerability of the mkv::virtual_segment_c::seek() function in the VideoLAN VLC media player software allows a attacker to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.
The vulnerability of the mkv::virtualsegmentc::seek function in the VideoLAN VLC media player software relates to its use after deallocation. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...
Oracle Retail Customer Management and Segmentation Foundation Remote Security Vulnerability
Description Oracle Retail Customer Management and Segmentation Foundation is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Segment' component is affected. This vulnerability affects the following supported versions: 17.0 Technologies...
Optimizing Video Streaming Performance with Origin-Assisted Prefetching
Online video streaming is everywhere today. It's available on the smallest hand-held devices to the largest of screens in our living rooms. Magically and for the most part, it works and provides a very captivating experience. However, if you step back to look at the overall architecture, media...
How to Scale Addressable Advertising with Low Latency for Live Streaming
Written by: David Springfall, Founder and CTO of Yospace Under David's technical and strategic leadership, Yospace pioneered server-side ad insertion and established itself as the global leader in OTT stream monetisation. The Yospace technology supports full one-to-one personalisation and provide...
CVE-2017-5482
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...