Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-87034
HistoryNov 09, 2021 - 12:00 a.m.

Google TensorFlow buffer overflow vulnerability (CNVD-2021-87034)

2021-11-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
google
tensorflow
buffer overflow
vulnerability
immutableconst operation
memory content
tstring
memory-mapped strings
support
cnvd

EPSS

0.001

Percentile

29.1%

JSON

Google TensorFlow is an end-to-end open source platform for machine learning from Google, U.S. A buffer overflow vulnerability exists in Google TensorFlow, which stems from the fact that the ImmutableConst operation can be tricked into reading arbitrary memory content. This is because the TensorFlow string class (tstring) has a special case for memory-mapped strings, but the operation itself does not provide any support for this data type. No detailed vulnerability details are provided at this time.

Related

osv 6
prion 1
veracode 1
cve 1
cvelist 1
github 1
nvd 1
ibm 1
osv
osv
CVE-2021-41227
2021-11-05 23:15:08
Arbitrary memory read in `ImmutableConst`
2021-11-10 18:34:49
BIT-tensorflow-2021-41227
2024-03-06 11:15:56
prion
prion
Stack overflow
2021-11-05 23:15:00
veracode
veracode
Arbitrary Memory Read
2021-11-09 07:35:21
cve
cve
CVE-2021-41227
2021-11-05 23:15:08
cvelist
cvelist
CVE-2021-41227 Arbitrary memory read in `ImmutableConst`
2021-11-05 22:30:23
github
github
Arbitrary memory read in `ImmutableConst`
2021-11-10 18:34:49
nvd
nvd
CVE-2021-41227
2021-11-05 23:15:08
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2021-12-17 04:21:06

EPSS

0.001

Percentile

29.1%

JSON
Related for CNVD-2021-87034
osv6prion1veracode1cve1cvelist1github1nvd1ibm1