Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:PYSEC-2022-150
HistoryFeb 04, 2022 - 11:15 p.m.

PYSEC-2022-150

2022-02-0423:15:00
Google
osv.dev
7
tensorflow
open source
machine learning
denial of service
savedmodel
python interpreter
security fix

EPSS

0.002

Percentile

60.9%

JSON

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a SavedModel such that assertions in function.cc would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

Related

osv 4
veracode 1
cvelist 1
github 1
nvd 1
prion 1
cnvd 1
cve 1
ibm 1
osv
osv
Multiple `CHECK`-fails in `function.cc` in TensowFlow
2022-02-09 23:27:08
BIT-tensorflow-2022-23586
2024-03-06 11:14:53
CVE-2022-23586
2022-02-04 23:15:14
veracode
veracode
Denial Of Service (DoS)
2022-02-08 05:36:02
cvelist
cvelist
CVE-2022-23586 Multiple `CHECK`-fails in `function.cc` in Tensorflow
2022-02-04 22:32:19
github
github
Multiple `CHECK`-fails in `function.cc` in TensowFlow
2022-02-09 23:27:08
nvd
nvd
CVE-2022-23586
2022-02-04 23:15:14
prion
prion
Stack overflow
2022-02-04 23:15:00
cnvd
cnvd
Google Tensorflow has an unspecified vulnerability (CNVD-2022-09859)
2022-02-09 00:00:00
cve
cve
CVE-2022-23586
2022-02-04 23:15:14
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2022-03-30 15:22:10

EPSS

0.002

Percentile

60.9%

JSON
Related for OSV:PYSEC-2022-150
osv4veracode1cvelist1github1nvd1prion1cnvd1cve1ibm1