Lucene search
PRIOn knowledge basePRION:CVE-2022-23579HistoryFeb 04, 2022 - 11:15 p.m.
Stack overflow
2022-02-0423:15:00
PRIOn knowledge base
www.prio-n.com
3
Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a SavedModel such that SafeToRemoveIdentity would trigger CHECK failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tensorflow | eq | 2.7.0 | |
| tensorflow | le | 2.5.2 | |
| tensorflow | ge | 2.6.0 | |
| tensorflow | le | 2.6.2 |
References
Related
osv
osv
CVE-2022-23579
2022-02-04 23:15:14
BIT-tensorflow-2022-23579
2024-03-06 11:15:02
`CHECK`-failures during Grappler's `SafeToRemoveIdentity` in Tensorflow
2022-02-10 00:33:29
nvd
nvd
CVE-2022-23579
2022-02-04 23:15:14
cnvd
cnvd
Google Tensorflow has an unspecified vulnerability (CNVD-2022-09882)
2022-02-09 00:00:00
cve
cve
CVE-2022-23579
2022-02-04 23:15:14
veracode
veracode
Denial Of Service (DoS)
2022-02-08 11:20:36
cvelist
cvelist
github
github
`CHECK`-failures during Grappler's `SafeToRemoveIdentity` in Tensorflow
2022-02-10 00:33:29
