Lucene search
China National Vulnerability DatabaseCNVD-2021-64528HistoryAug 16, 2021 - 12:00 a.m.
Google TensorFlow buffer overflow vulnerability (CNVD-2021-64528)
2021-08-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.0004 Low
EPSS
Percentile
12.8%
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A security vulnerability exists in Google TensorFlow, which stems from the fact that in affected versions, an attacker can cause undefined behavior by binding references to null pointers in tf.raw_ops.SparseFillEmptyRows to a null pointer to cause undefined behavior.
| CPE | Name | Operator | Version |
|---|---|---|---|
| google tensorflow | eq | 2.5.1 | |
| google tensorflow | eq | 2.4.3 | |
| google tensorflow | eq | 2.3.4 |
Related
cvelist
cvelist
CVE-2021-37676 Reference binding to nullptr in shape inference in TensorFlow
2021-08-12 21:40:27
cve
cve
CVE-2021-37676
2021-08-12 22:15:08
veracode
veracode
Denial Of Service (DoS)
2021-08-16 06:59:16
osv
osv
PYSEC-2021-298
2021-08-12 22:15:00
Reference binding to nullptr in shape inference
2021-08-25 14:41:26
BIT-tensorflow-2021-37676
2024-03-06 11:17:00
github
github
Reference binding to nullptr in shape inference
2021-08-25 14:41:26
prion
prion
Null pointer dereference
2021-08-12 22:15:00
nvd
nvd
CVE-2021-37676
2021-08-12 22:15:08
nessus
nessus
openSUSE 15 Security Update : tensorflow2 (openSUSE-SU-2022:10014-1)
2022-06-19 00:00:00
suse
suse
Security update for tensorflow2 (moderate)
2022-06-18 00:00:00
