VYPR

CWE-476

NULL Pointer Dereference

BaseStableLikelihood: Medium

Description

The product dereferences a pointer that it expects to be valid but is NULL.

Hierarchy (View 1000)

Children

none

CVEs mapped to this weakness (1,587)

page 66 of 80
  • CVE-2021-41217MedNov 5, 2021
    risk 0.29cvss 5.5epss 0.00

    TensorFlow is an open source platform for machine learning. In affected versions the process of building the control flow graph for a TensorFlow model is vulnerable to a null pointer exception when nodes that should be paired are not. This occurs because the code assumes that…

  • CVE-2021-41215MedNov 5, 2021
    risk 0.29cvss 5.5epss 0.00

    TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `DeserializeSparse` can trigger a null pointer dereference. This is because the shape inference function assumes that the `serialize_sparse` tensor is a tensor with…

  • CVE-2020-35907MedDec 31, 2020
    risk 0.29cvss 5.5epss 0.00

    An issue was discovered in the futures-task crate before 0.3.5 for Rust. futures_task::noop_waker_ref allows a NULL pointer dereference.

  • CVE-2018-15864MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.00

    Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was…

  • CVE-2018-15863MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.01

    Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression.

  • CVE-2018-15862MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.00

    Unchecked NULL pointer usage in LookupModMask in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with invalid virtual modifiers.

  • CVE-2018-15861MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.01

    Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure.

  • CVE-2018-15859MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.01

    Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are…

  • CVE-2018-15858MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.00

    Unchecked NULL pointer usage when handling invalid aliases in CopyKeyAliasesToKeymap in xkbcomp/keycodes.c in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file.

  • CVE-2018-15855MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.00

    Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkb_geometry section was mishandled.

  • CVE-2018-15854MedAug 25, 2018
    risk 0.29cvss 5.5epss 0.00

    Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because geometry tokens were desupported incorrectly.

  • CVE-2017-17554MedDec 12, 2017
    risk 0.29cvss 5.5epss 0.01

    A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

  • CVE-2017-12153MedSep 21, 2017
    risk 0.29cvss 4.4epss 0.00

    A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the…

  • CVE-2015-8898MedMar 15, 2017
    risk 0.29cvss 5.5epss 0.02

    The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.

  • CVE-2016-10147MedJan 18, 2017
    risk 0.29cvss 5.5epss 0.00

    crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an AF_ALG socket with an incompatible algorithm, as demonstrated by mcryptd(md5).

  • CVE-2015-8970MedNov 28, 2016
    risk 0.29cvss 5.5epss 0.01

    crypto/algif_skcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation has been performed on an AF_ALG socket before an accept system call is processed, which allows local users to cause a denial of service (NULL pointer dereference and system crash)…

  • CVE-2011-4081MedMay 24, 2012
    risk 0.29cvss 5.5epss 0.00

    crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by triggering a failed or missing ghash_setkey function call, followed by a (1) ghash_update…

  • CVE-2012-1146MedMay 17, 2012
    risk 0.29cvss 5.5epss 0.01

    The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service (NULL pointer dereference and system crash)…

  • CVE-2011-4594MedMay 17, 2012
    risk 0.29cvss 5.5epss 0.00

    The __sys_sendmsg function in net/socket.c in the Linux kernel before 3.1 allows local users to cause a denial of service (system crash) via crafted use of the sendmmsg system call, leading to an incorrect pointer dereference.

  • CVE-2011-3637MedMay 17, 2012
    risk 0.29cvss 5.5epss 0.00

    The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (OOPS) via vectors that trigger an m_start error.