xyb 1047524396
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31585 | |
| [PRODUCT] | |
| FFmpeg | |
| [VERSION] | |
| from n5.1 to n6.1.1 | |
| [PROBLEM TYPE] | |
| CWE-193: Off-by-one Error | |
| [DESCRIPTION] | |
| FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31584 | |
| [PRODUCT] | |
| pytorch | |
| [VERSION] | |
| before v2.2.0 | |
| [PROBLEM TYPE] | |
| CWE-125: Out-of-bounds Read | |
| [DESCRIPTION] | |
| Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbuffer_loader.cpp. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31583 | |
| [PRODUCT] | |
| pytorch | |
| [VERSION] | |
| before v2.2.0 | |
| [PROBLEM TYPE] | |
| CWE-416: Use After Free | |
| [DESCRIPTION] | |
| Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31582 | |
| [PRODUCT] | |
| FFmpeg | |
| [VERSION] | |
| n6.1.1 | |
| [PROBLEM TYPE] | |
| Buffer Overflow | |
| [DESCRIPTION] | |
| FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c. This vulnerability allows attackers to cause undefined behavior or a Denial of Service (DoS) via crafted input. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31581 | |
| [PRODUCT] | |
| FFmpeg team | |
| [VERSION] | |
| n6.1 | |
| [PROBLEM TYPE] | |
| CWE-129: Improper Validation of Array Index | |
| [DESCRIPTION] | |
| FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31580 | |
| [PRODUCT] | |
| pytorch | |
| [VERSION] | |
| before v2.2.0 | |
| [PROBLEM TYPE] | |
| Buffer Overflow | |
| [DESCRIPTION] | |
| PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31579 | |
| [PRODUCT] | |
| curl | |
| [VERSION] | |
| before curl-8_4_0 | |
| [PROBLEM TYPE] | |
| CWE-476: NULL Pointer Dereference | |
| [DESCRIPTION] | |
| A NULL pointer dereference in the component /lib/idn.c of Curl before v8.4.0 allows attackers to cause a Denial of Service (DoS) via a crafted URL. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31577 | |
| [PRODUCT] | |
| OpenSSL | |
| [VERSION] | |
| before openssl-3.2.0 | |
| [PROBLEM TYPE] | |
| CWE-476: NULL Pointer Dereference | |
| [DESCRIPTION] | |
| OpenSSL before v3.2.0 was discovered to contain a NULL pointer dereference via the component /rand/rand_lib.c. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31578 | |
| [PRODUCT] | |
| FFmpeg | |
| [VERSION] | |
| all the release version including lastest version n6.1.1 | |
| [PROBLEM TYPE] | |
| CWE-416: Use After Free | |
| [DESCRIPTION] | |
| FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-31576 | |
| [PRODUCT] | |
| Rust | |
| [VERSION] | |
| before 1.76.0 | |
| [PROBLEM TYPE] | |
| CWE-457: Use of Uninitialized Variable | |
| [DESCRIPTION] | |
| An issue in the component /rustc_ty_utils/src/layout.rs of Rust before v1.76.0 allows attackers to cause the application to use an uninitialized variable via crafted Rust code. This vulnerability will cause undefined behavior within the application. |
NewerOlder