Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A buffer overflow vulnerability exists in Google TensorFlow, which stems from the shape inference code of “tf.ragged.cross” having undefined behavior due to a reference to “nullptr” bound in the affected version. and has undefined behavior. No details of the vulnerability are currently available.
CPE | Name | Operator | Version |
---|---|---|---|
google tensorflow | lt | 2.7.0 | |
google tensorflow | lt | 2.6.1 | |
google tensorflow | lt | 2.5.2 | |
google tensorflow | lt | 2.4.4 |