PT-2022-25694 · Dassault Systèmes +1 · Catia +1

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management when handling manipulated CATIA4 Part .model files. If a user opens such a file from an untrusted source, the application may crash and...

MGASA-2022-0358 Updated bash packages fix security vulnerability

Bash has been updated to version 5.1.16 using a patch from Fedora to fix a security issue by adding a null check in the parameterbracetransform function...

SUSE-SU-2022:3493-1 Security update for libcroco

This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions bsc1171685...

PT-2022-34206 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the ALSA timer and the use of a deferred fasync helper. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel version...

CVE-2022-36017 Segfault in `Requantize` in TensorFlow

TensorFlow is an open source platform for machine learning. If Requantize is given inputmin, inputmax, requestedoutputmin, requestedoutputmax tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

GHSA-R26C-679W-MRJM TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVarsGradient`

Impact When tf.quantization.fakequantwithminmaxvarsgradient receives input min or max that is nonscalar, it gives a CHECK fail that can trigger a denial of service attack. python import tensorflow as tf import numpy as np arg0=tf.constantvalue=np.random.randomsize=2, 2, shape=2, 2, dtype=tf.float...

CVE-2022-35972 Segfault in `QuantizedBiasAdd` in TensorFlow

TensorFlow is an open source platform for machine learning. If QuantizedBiasAdd is given mininput, maxinput, minbias, maxbias tensors of a nonzero rank, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

CVE-2022-35964 Segfault in `BlockLSTMGradV2` in TensorFlow

TensorFlow is an open source platform for machine learning. The implementation of BlockLSTMGradV2 does not fully validate its inputs. This results in a a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

CVE-2022-35937 OOB read in `Gather_nd` op in TensorFlow Lite

TensorFlow is an open source platform for machine learning. The GatherNd function takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read is triggered. This issue has been patched in...

CVE-2022-39207 Persistent XSS in OneDev

Onedev is an open source, self-hosted Git Server with CI/CD and Kanban. During CI/CD builds, it is possible to save build artifacts for later retrieval. They can be accessed through OneDev's web UI after the successful run of a build. These artifact files are served by the webserver in the same...

PT-2022-24356 · Lief · Lief

Name of the Vulnerable Software and Affected Versions: LIEF versions prior to 53bf680ef494a835e2c4a5de328ca85416a03a5a Description: A heap-buffer overflow was discovered in the component /core/CorePrPsInfo.tcc. The issue affects LIEF and is related to a heap-buffer overflow, which can be exploite...

PT-2022-4740 · Mz Automation +1 · Libiec61850 +1

Name of the Vulnerable Software and Affected Versions: MZ Automation's libIEC61850 versions 1.4 and prior MZ Automation's libIEC61850 version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e Description: The issue is related to a stack-based buffer overflow, which could allow an...

CVE-2022-36082 mangadex-downloader vulnerable to unauthorized file reading

mangadex-downloader is a command-line tool to download manga from MangaDex. When using file: command and is a web URL location http, https, mangadex-downloader between versions 1.3.0 and 1.7.2 will try to open and read a file in local disk for each line of website contents. Version 1.7.2 contains...

PT-2022-23134 · Unknown · Circuitverse

Name of the Vulnerable Software and Affected Versions: CircuitVerse versions prior to the version with commit number 7b3023a99499a7675f10f2c1d9effdf10c35fb6e Description: CircuitVerse is an open-source platform for constructing digital logic circuits online. A remote code execution issue allows...

PT-2022-23440 · H3C · H3C Gr-1200W

Name of the Vulnerable Software and Affected Versions: H3C GR-1200W MiniGRW1A0V100R006 Description: A stack overflow issue was discovered in the H3C GR-1200W via the function AddWlanMacList. Recommendations: For H3C GR-1200W MiniGRW1A0V100R006, consider disabling the AddWlanMacList function as a...

PT-2022-24085 · Tenda · Tenda Ac1206

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 version 15.03.06.23 Description: A stack overflow issue was discovered via the function formSetClientState. Recommendations: For Tenda AC1206 version 15.03.06.23, consider disabling the formSetClientState function until a patch i...

PT-2022-23412 · H3C · H3C Magic Nx18 Plus

Name of the Vulnerable Software and Affected Versions: H3C Magic NX18 Plus version NX18PV100R003 Description: A stack overflow issue was discovered via the function EditMacList. Recommendations: For H3C Magic NX18 Plus version NX18PV100R003, consider disabling the EditMacList function as a...

Yokogawa CENTUM Controller FCS Resource Management Errors (CVE-2022-33939)

CENTUM VP / CS 3000 controller FCS CP31, CP33, CP345, CP401, and CP451 contains an issue in processing communication packets, which may lead to resource consumption. If this vulnerability is exploited, an attacker may cause a denial of service DoS condition in ADL communication by sending a...

PT-2022-22476 · Luadec · Luadec

Name of the Vulnerable Software and Affected Versions: Luadec version 0.9.9 Description: A heap-buffer overflow issue was discovered in Luadec via the UnsetPending function. Recommendations: For Luadec version 0.9.9, consider disabling the UnsetPending function as a temporary workaround until a...

CVE-2022-31180 Insufficient escaping of whitespace in shescape

Shescape is a simple shell escape package for JavaScript. Affected versions were found to have insufficient escaping of white space when interpolating output. This issue only impacts users that use the escape or escapeAll functions with the interpolation option set to true. The result is that if ...