Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:PYSEC-2021-395
HistoryNov 05, 2021 - 10:15 p.m.

PYSEC-2021-395

2021-11-0522:15:00
Google
osv.dev
11
tensorflow
machine learning
vulnerability
size calculation
tensorflow 2.4.4
tensorflow 2.5.2
tensorflow 2.6.1
c++

EPSS

0

Percentile

14.2%

JSON

TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the tf.range kernel, there is a conditional statement of type int64 = condition ? int64 : double. Due to C++ implicit conversion rules, both branches of the condition will be cast to double and the result would be truncated before the assignment. This result in overflows. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

Related

osv 5
cnvd 1
prion 1
github 1
cvelist 1
nvd 1
cve 1
ibm 1
osv
osv
CVE-2021-41202
2021-11-05 22:15:08
BIT-tensorflow-2021-41202
2024-03-06 11:16:29
Overflow/crash in `tf.range`
2021-11-10 19:13:16
cnvd
cnvd
Google TensorFlow has an unspecified vulnerability (CNVD-2021-92550)
2021-11-09 00:00:00
prion
prion
Design/Logic Flaw
2021-11-05 22:15:00
github
github
Overflow/crash in `tf.range`
2021-11-10 19:13:16
cvelist
cvelist
CVE-2021-41202 Overflow/crash in `tf.range`
2021-11-05 21:45:18
nvd
nvd
CVE-2021-41202
2021-11-05 22:15:08
cve
cve
CVE-2021-41202
2021-11-05 22:15:08
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2021-12-17 04:21:06

EPSS

0

Percentile

14.2%

JSON
Related for OSV:PYSEC-2021-395
osv5cnvd1prion1github1cvelist1nvd1cve1ibm1