Google TensorFlow is an end-to-end open source machine learning platform. An out-of-bounds read vulnerability exists in the shape inference code of tf.ragged.cross
in versions prior to TensorFlow 2.7.0 for heap allocation arrays. No details of the vulnerability are currently available.