Lucene search
K

28 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/05/03 3:6 p.m.32 views

Security Bulletin: Tensor Flow security vulnerabilities with denial of service on IBM Watson Machine Learning Server

Summary TensorFlow is vulnerable to a denial of service .Remote attacker could exploit this vulnerability to cause a denial of service condition on IBM Watson Machine Learning Server Vulnerability Details CVEID: CVE-2020-15190 DESCRIPTION: TensorFlow is vulnerable to a denial of service, caused b...

5.3CVSS0.8AI score0.00943EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/30 12:0 a.m.37 views

openSUSE Security Update : tensorflow2 (openSUSE-2020-1766)

This update for tensorflow2 fixes the following issues : - updated to 2.1.2 with following fixes boo1177022 : - Fixes an undefined behavior causing a segfault in tf.rawops.Switch CVE-2020-15190 - Fixes three vulnerabilities in conversion to DLPack format CVE-2020-15191, CVE-2020-15192,...

9.8CVSS6.4AI score0.01235EPSS
Exploits16References20
OSV
OSV
added 2020/10/29 11:23 a.m.8 views

OPENSUSE-SU-2020:1766-1 Security update for tensorflow2

This update for tensorflow2 fixes the following issues: - updated to 2.1.2 with following fixes boo1177022: Fixes an undefined behavior causing a segfault in tf.rawops.Switch CVE-2020-15190 Fixes three vulnerabilities in conversion to DLPack format CVE-2020-15191, CVE-2020-15192, CVE-2020-15193...

9.8CVSS10AI score0.01235EPSS
Exploits16References21
OPENSUSE Linux
OPENSUSE Linux
added 2020/10/29 12:0 a.m.46 views

Security update for tensorflow2 (moderate)

openSUSE Security Update: Security update for tensorflow2 Announcement ID: openSUSE-SU-2020:1766-1 Rating: moderate References: 1173314 1175099 1175789 1177022 Cross-References: CVE-2020-15190 CVE-2020-15191 CVE-2020-15192 CVE-2020-15193 CVE-2020-15194 CVE-2020-15195 CVE-2020-15202 CVE-2020-15203...

9.8CVSS7.1AI score0.01235EPSS
Exploits16References4
NVD
NVD
added 2020/09/25 7:15 p.m.35 views

CVE-2020-15190

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the tf.rawops.Switch operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. Howeve...

5.3CVSS0.00943EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.2 views

d3m-simon (=1.2.5), easyquake (>=1.3.0 <=1.4.0) potentially affected by CVE-2020-15190 via tensorflow-gpu (=2.2.0)

tensorflow-gpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - d3m-simon =1.2.5 - easyquake =1.3.0, =1.4.0 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-305...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.6 views

deep-floorplan (=0.0.0) potentially affected by CVE-2020-15190 via tensorflow-gpu (=2.3.0)

tensorflow-gpu PYPI version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - deep-floorplan =0.0.0 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-305...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +82 more potentially affected by CVE-2020-15190 via tensorflow (=2.2.0)

tensorflow PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - accuinsight =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2020-15190 Source advisory...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.5 views

azureml-designer-recommender-modules (>=0.0.1 <=0.0.9), monk-cuda100 (=0.0.1) +9 more potentially affected by CVE-2020-15190 via tensorflow-gpu (>=2.0.0 <=2.0.1)

tensorflow-gpu PYPI version =2.0.0, =0.0.1, =0.0.9 - monk-cuda100 =0.0.1 - monk-cuda100-test =0.0.1 - monk-cuda101 =0.0.1 - monk-cuda101-test =0.0.1 - monk-keras-cuda100 =0.0.1 - monk-keras-cuda100-test =0.0.1 - monk-keras-cuda101 =0.0.1 - monk-keras-cuda101-test =0.0.1 - monk-keras-cuda102 =0.0....

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

abba-python (>=0.1.6 <=0.3.0), adpred (>=1.1.2 <=1.2.7) +233 more potentially affected by CVE-2020-15190 via tensorflow (>=1.0.1 <=1.15.3)

tensorflow PYPI version =1.0.1, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =0.2.0, =0.4.2, =0.1.1, =0.1.5 - autobazaar =0.1.0 - autogan =0.0.5 - automationobjectdetection-sandeepjena7 =0.0.1 - automl-lib =0.0.1 and more Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-113...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.5 views

aglvq (=1.0.0), beacon-trellis (=0.1.0) +64 more potentially affected by CVE-2020-15190 via tensorflow (=2.1.0)

tensorflow PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - aglvq =1.0.0 - beacon-trellis =0.1.0 - biobb-ml =3.0.0, =0.0.1, =0.2.0, =0.0.2, =0.1.0, =1.1.0, =0.2.0rc1, =0.2.0rc3 and more Source cves:...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.4 views

adapt-diagnostics (=1.2.0), adversarial-friend (=1.1.8) +64 more potentially affected by CVE-2020-15190 via tensorflow (=2.3.0)

tensorflow PYPI version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - adapt-diagnostics =1.2.0 - adversarial-friend =1.1.8 - aliby-baby =0.1.0, =0.0.1a0, =0.0.1, =1.0.1.0, =0.1.0, =2.0.0, =0.1.0, =0.0.17, =0.1...

5.3CVSS5.9AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.7 views

gamornet-cpu (>=0.2.3 <=0.4.3), tchatbot (=0.1.0) +1 more potentially affected by CVE-2020-15190 via tensorflow-cpu (=1.15.0)

tensorflow-cpu PYPI version =1.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - gamornet-cpu =0.2.3, =0.7.0, =0.7.5 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-270...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.3 views

pycnet-audio (>=0.5.1 <=0.5.8) potentially affected by CVE-2020-15190 via tensorflow-cpu (=2.2.0)

tensorflow-cpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - pycnet-audio =0.5.1, =0.5.8 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-270...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 7:15 p.m.6 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15190 via tensorflow-cpu (=2.1.0)

tensorflow-cpu PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - tensorflowjs =1.5.2, =1.7.4 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-270...

5.3CVSS6AI score0.00943EPSS
Exploits1
CVE
CVE
added 2020/09/25 6:35 p.m.174 views

CVE-2020-15190

TensorFlow CVE-2020-15190 is a vulnerability in tf.raw_ops.Switch where, in eager mode, the runtime binds a reference to a nullptr when one of the two outputs is undefined. This causes undefined behavior and can segfault when compiled with -fsanitize=null. The issue affects TensorFlow versions 1....

5.3CVSS5.3AI score0.00943EPSS
Exploits1References4Affected Software1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.3 views

d3m-simon (=1.2.5), easyquake (>=1.3.0 <=1.4.0) potentially affected by CVE-2020-15190 via tensorflow-gpu (=2.2.0)

tensorflow-gpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - d3m-simon =1.2.5 - easyquake =1.3.0, =1.4.0 Source cves: CVE-2020-15190 Source advisory: OSV:GHSA-4G9F-63RX-5CW4...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.6 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +82 more potentially affected by CVE-2020-15190 via tensorflow (=2.2.0)

tensorflow PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - accuinsight =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2020-15190 Source advisory...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.4 views

ai4bharat-transliteration (>=1.1.0 <=1.1.3), aipack (>=0.0.1 <=0.0.5) +52 more potentially affected by CVE-2020-15190 via tensorflow (>=2.0.0 <=2.0.1)

tensorflow PYPI version =2.0.0, =1.1.0, =0.0.1, =0.1.3.2, =0.2.6, =0.2.0, =0.0.2, =1.0.0.1, =0.0.1, =1.0.4, =0.6.0.post3, =0.1.3, =1.0.0, =1.0.1 and more Source cves: CVE-2020-15190 Source advisory: OSV:GHSA-4G9F-63RX-5CW4...

5.3CVSS5.9AI score0.00943EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.3 views

gamornet-cpu (>=0.2.3 <=0.4.3), tchatbot (=0.1.0) +1 more potentially affected by CVE-2020-15190 via tensorflow-cpu (=1.15.0)

tensorflow-cpu PYPI version =1.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - gamornet-cpu =0.2.3, =0.7.0, =0.7.5 Source cves: CVE-2020-15190 Source advisory: OSV:GHSA-4G9F-63RX-5CW4...

5.3CVSS6AI score0.00943EPSS
Exploits1
Rows per page
Query Builder