Lucene search
K

6 matches found

NVD
NVD
added 2026/04/22 7:16 a.m.6 views

CVE-2026-41667

Integer overflow in constant tensor data size calculation in Samsung Open Source ONE could cause incorrect buffer sizing for large constant nodes. Affected version is prior to commit 1.30.0...

6.6CVSS0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/22 5:57 a.m.4 views

CVE-2026-41667

Integer overflow in constant tensor data size calculation in Samsung Open Source ONE could cause incorrect buffer sizing for large constant nodes. Affected version is prior to commit 1.30.0...

6.6CVSS6AI score0.00162EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/11/21 6:3 p.m.11 views

MLX has Wild Pointer Dereference in load_gguf()

Summary Segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. Environment: - OS: Ubuntu 20.04.6 LTS - Compiler: Clang 19.1.7 Vulnerability Location: mlx/io/gguf.cp...

7.5CVSS7.1AI score0.00328EPSS
Exploits1References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.4 views

SUSE CVE-2022-29210

TensorFlow is an open source platform for machine learning. In version 2.8.0, the TensorKey hash function used total estimated AllocatedBytes, which a is an estimate per tensor, and b is a very poor hash function for constants e.g. int32t. It also tried to access individual tensor bytes through...

5.5CVSS5.3AI score0.00225EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/05/20 12:0 a.m.5 views

PT-2022-19463 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow version 2.8.0 Description: The issue arises from the TensorKey hash function using total estimated AllocatedBytes, which is an estimate per tensor and a poor hash function for constants, such as int32 t. It also attempts to access...

5.5CVSS5.3AI score0.00225EPSS
Exploits0References12
PyPA
PyPA
added 2021/08/12 10:15 p.m.6 views

PYSEC-2021-792

TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of SVDF in TFLite is vulnerable to a null pointer error. The GetVariableInput function can return a null pointer but GetTensorData assumes that the argument is always a valid tensor...

7.8CVSS7AI score0.00173EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder