{
  "repo": "onnx/onnx",
  "huntr_url": "https://huntr.com/repos/onnx/onnx",
  "our_title": "SplitToSequence scalar split=0 crashes ONNX shape inference via integer modulo by zero",
  "our_vuln_classes": [
    "dos"
  ],
  "total_reports": 55,
  "matches": [
    {
      "title": "Native stack exhaustion (SIGSEGV) in onnx.inliner via a function-call cycle hidd...",
      "url": "https://huntr.com/bounties/a29f9c75-838c-4e8d-8560-4d1a81dfc75a",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Uncontrolled recursion in ONNX text parser (Parse(TypeProto&)) causes stack-over...",
      "url": "https://huntr.com/bounties/09474829-53e4-4c06-a86e-963b0407c81a",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Uncontrolled recursion in ONNX text parser (Parse(TypeProto&)) causes stack-over...",
      "url": "https://huntr.com/bounties/90d30ec6-0347-4cc9-abb5-8272b3f65fda",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Regular Expression Denial of Service (ReDoS) in RegexFullMatch Operator",
      "url": "https://huntr.com/bounties/c77053c9-dcdb-46b6-9fb6-d13ef66af474",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Denial of Service via Unbounded Memory Allocation in Sub-byte Packed Types",
      "url": "https://huntr.com/bounties/07061e5f-9dd8-420c-a309-2d603bd53636",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Unchecked integer arithmetic in ParseData causes DoS and silent shape truncation...",
      "url": "https://huntr.com/bounties/79cdc808-08cf-47bc-a9ba-f159293e2e93",
      "overlap_classes": [
        "dos"
      ],
      "score": 3
    },
    {
      "title": "Out-of-Bounds Write in ParseData(Tensor*) leads to deterministic crash in ONNX v...",
      "url": "https://huntr.com/bounties/d0b3d6ae-27d6-4add-ab70-46050e28c236",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Integer divide-by-zero in ONNX Conv/Pool shape inference causes process crash vi...",
      "url": "https://huntr.com/bounties/ace9def9-debd-480c-872a-265854476e62",
      "overlap_classes": [
        "dos"
      ],
      "score": 4
    },
    {
      "title": "Unbounded Stack Recursion via Self-Recursive Model-Local Functions Crashes Proce...",
      "url": "https://huntr.com/bounties/a7cb9c86-a9ca-490b-9979-4b20eeb36009",
      "overlap_classes": [
        "dos"
      ],
      "score": 2
    },
    {
      "title": "Integer Overflow in onnx::ParseData leading to Denial of Service",
      "url": "https://huntr.com/bounties/13c0330f-2b4c-47c1-aef6-8becb2ddbd25",
      "overlap_classes": [
        "dos"
      ],
      "score": 2
    },
    {
      "title": "Unlimited Graph Nesting Depth in Visitor Pattern Enables Stack Overflow DoS via...",
      "url": "https://huntr.com/bounties/43bdb396-90d2-4447-8fe1-99dc4f58e781",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    },
    {
      "title": "Object State Corruption and Denial of Service via Unrestricted setattr() in Exte...",
      "url": "https://huntr.com/bounties/27e01eb7-2e26-47fb-9752-190c1ea3a7c8",
      "overlap_classes": [
        "dos"
      ],
      "score": 1
    }
  ],
  "risk_level": "DUPE",
  "match_count": 12
}