Количество 3
Количество 3
CVE-2019-12410
While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data from parquet. This affected the C++, Python, Ruby and R implementations. The uninitialized memory could potentially be shared if are transmitted over the wire (for instance with Flight) or persisted in the streaming IPC and file formats.
CVE-2019-12410
While investigating UBSAN errors in https://github.com/apache/arrow/pu ...
GHSA-cjw4-2w9r-r8mv
Missing Initialization of Resource in Apache Arrow
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-12410 While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data from parquet. This affected the C++, Python, Ruby and R implementations. The uninitialized memory could potentially be shared if are transmitted over the wire (for instance with Flight) or persisted in the streaming IPC and file formats. | CVSS3: 7.5 | 5% Низкий | больше 6 лет назад |
| CVE-2019-12410 While investigating UBSAN errors in https://github.com/apache/arrow/pu ... | CVSS3: 7.5 | 5% Низкий | больше 6 лет назад |
| GHSA-cjw4-2w9r-r8mv Missing Initialization of Resource in Apache Arrow | CVSS3: 7.5 | 5% Низкий | больше 3 лет назад |
Уязвимостей на страницу