Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-41202
HistoryNov 05, 2021 - 10:15 p.m.

CVE-2021-41202

2021-11-0522:15:08
Google
osv.dev
4
tensorflow
machine learning
kernel_overflow
conditional_statement
implicit_conversion
c++_rules
fix_included
version_2.7.0
cherrypick_commit
supported_range

EPSS

0

Percentile

14.2%

JSON

TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the tf.range kernel, there is a conditional statement of type int64 = condition ? int64 : double. Due to C++ implicit conversion rules, both branches of the condition will be cast to double and the result would be truncated before the assignment. This result in overflows. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

Related

osv 5
cnvd 1
prion 1
github 1
cvelist 1
nvd 1
cve 1
ibm 1
osv
osv
BIT-tensorflow-2021-41202
2024-03-06 11:16:29
PYSEC-2021-395
2021-11-05 22:15:00
Overflow/crash in `tf.range`
2021-11-10 19:13:16
cnvd
cnvd
Google TensorFlow has an unspecified vulnerability (CNVD-2021-92550)
2021-11-09 00:00:00
prion
prion
Design/Logic Flaw
2021-11-05 22:15:00
github
github
Overflow/crash in `tf.range`
2021-11-10 19:13:16
cvelist
cvelist
CVE-2021-41202 Overflow/crash in `tf.range`
2021-11-05 21:45:18
nvd
nvd
CVE-2021-41202
2021-11-05 22:15:08
cve
cve
CVE-2021-41202
2021-11-05 22:15:08
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2021-12-17 04:21:06

EPSS

0

Percentile

14.2%

JSON
Related for OSV:CVE-2021-41202
osv5cnvd1prion1github1cvelist1nvd1cve1ibm1