Lucene search
K

196 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37682

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS5.5AI score0.0018EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/11/08 9:42 p.m.14 views

Invalid use of `mem::uninitialized` causes `use-of-uninitialized-value`

The compression and decompression function used mem:uninitialized to create an array of uninitialized values, to later write values into it. This later leads to reads from uninitialized memory. The flaw was corrected in commit b633bf265e41c60dfce3be7eac4e4dd5e18d06cf by using a heap-allocated Vec...

2.1AI score
Exploits0References4Affected Software1
OSV
OSV
added 2022/11/08 9:42 p.m.12 views

GHSA-5M39-WX2Q-MXG3 Invalid use of `mem::uninitialized` causes `use-of-uninitialized-value`

The compression and decompression function used mem:uninitialized to create an array of uninitialized values, to later write values into it. This later leads to reads from uninitialized memory. The flaw was corrected in commit b633bf265e41c60dfce3be7eac4e4dd5e18d06cf by using a heap-allocated Vec...

7AI score
Exploits0References4
CNNVD
CNNVD
added 2022/11/02 12:0 a.m.3 views

Google Golang 安全漏洞

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

7.5CVSS7.1AI score0.00778EPSS
Exploits0References9
OSV
OSV
added 2021/12/27 12:15 a.m.13 views

DEBIAN-CVE-2018-25023

An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type...

7.5CVSS7.3AI score0.01389EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/12/27 12:0 a.m.8 views

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. a security vulnerability exists in versions of Rust smallvec crate prior to 0.6.13, which stems from the fact that it can create uninitialized values of any type, including reference types. No details of the...

7.5CVSS5.6AI score0.01389EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/10/19 12:0 a.m.3 views

Synchronet BBS 安全漏洞

Synchronet Bbs is a multi-user Bbs/Internet software from Synchronet, USA. A security vulnerability exists in the scanallsubs function of src/sbbs3/scansubs.cpp in Synchronet BBS, which can be exploited by an attacker to view sensitive information via uninitialized values...

7.5CVSS7.3AI score0.00914EPSS
Exploits0References2
OSV
OSV
added 2021/08/12 11:15 p.m.5 views

PYSEC-2021-304

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS6.4AI score0.0018EPSS
Exploits0References4
Prion
Prion
added 2021/08/12 11:15 p.m.16 views

Design/Logic Flaw

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

3.6CVSS6.8AI score0.0018EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/08/12 11:15 p.m.3 views

PYSEC-2021-793

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS6.4AI score0.0018EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/08/12 11:15 p.m.3 views

CVE-2021-37682

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS5.5AI score0.0018EPSS
Exploits0References5Affected Software1
PyPA
PyPA
added 2021/08/12 11:15 p.m.7 views

PYSEC-2021-595

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS6.9AI score0.0018EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2021/08/12 11:15 p.m.8 views

PYSEC-2021-304

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS6.9AI score0.0018EPSS
Exploits0References4Affected Software1
PyPA
PyPA
added 2021/08/12 11:15 p.m.6 views

PYSEC-2021-793

TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. For example. The issue stems from the fact that quantization.params is only valid if quantization.type is different that...

7.1CVSS6.9AI score0.0018EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2021/08/12 12:0 a.m.11 views

PT-2021-21801 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: The issue affects all TFLite operations that use quantization, allowing them to...

9.3CVSS5.7AI score0.00451EPSS
Exploits5References90
CNVD
CNVD
added 2021/05/11 12:0 a.m.8 views

Unspecified Vulnerability in Rust (CNVD-2021-38316)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust rkyv crate versions prior to 0.6.0, which stems from the fact that when an archive is created via serialization, the contents of the archive may contain uninitialized valu...

7.5CVSS6.6AI score0.01079EPSS
Exploits0References1
OSV
OSV
added 2021/04/30 3:15 a.m.20 views

CVE-2021-31919

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

7.5CVSS7.5AI score
Exploits0References1
NVD
NVD
added 2021/04/30 3:15 a.m.22 views

CVE-2021-31919

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

7.5CVSS0.01079EPSS
Exploits0References1
Prion
Prion
added 2021/04/30 3:15 a.m.16 views

Code injection

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

5CVSS7.5AI score0.01079EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/04/30 3:0 a.m.78 views

CVE-2021-31919

The CVE-2021-31919 entry concerns the Rust rkyv crate before version 0.6.0. During serialization, an archive may contain uninitialized values for certain struct parts, potentially affecting the serialized data’s integrity and confidentiality. The core affected component is rkyv (Rust). Publicly d...

7.5CVSS7.4AI score0.01079EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder