31 matches found
TensorFlow vulnerable to `CHECK` fail in `Conv2DBackpropInput`
Impact When Conv2DBackpropInput receives empty outbackprop inputs e.g. 3, 1, 0, 1, the current CPU/GPU kernels CHECK fail one with dnnl, the other with cudnn. This can be used to trigger a denial of service attack. python import tensorflow as tf import numpy as np inputsizes = 3, 1, 1, 2 filter =...
GHSA-37JF-MJV6-XFQW TensorFlow vulnerable to `CHECK` fail in `Conv2DBackpropInput`
Impact When Conv2DBackpropInput receives empty outbackprop inputs e.g. 3, 1, 0, 1, the current CPU/GPU kernels CHECK fail one with dnnl, the other with cudnn. This can be used to trigger a denial of service attack. python import tensorflow as tf import numpy as np inputsizes = 3, 1, 1, 2 filter =...
Google TensorFlow 安全漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google, Inc. in the United States. Google TensorFlow suffers from a security vulnerability that stems from a failure of the current CPU/GPU kernel assertion one with dnnl and the other with cudnn when...
Google TensorFlow 安全漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google. Google TensorFlow has a security vulnerability that stems from the fact that the implementation of Conv2DBackpropInput requires inputsizes to be 4-dimensional. Otherwise, it gives an assertion failu...
Division by 0 in `Conv2DBackpropInput`
Impact An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput: python import tensorflow as tf inputtensor = tf.constant52, 1, 1, 5, shape=4, dtype=tf.int32 filtertensor = tf.constant, shape=0, 1, 5, 0, dtype=tf.float32 outbackprop = tf.constant, shape=52, 1, 1, 0, dtype=tf.float...
TensorFlow divide-by-zero error vulnerability (CNVD-2021-36565)
Google TensorFlow is an end-to-end open source machine learning platform. A divide-by-zero error vulnerability exists in the tf.rawops.Conv2DBackpropInput implementation in TensorFlow versions prior to 2.5.0. No detailed vulnerability details are provided at this time...
PYSEC-2021-453
TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...
PYSEC-2021-162
TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...
PYSEC-2021-651
TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...
PT-2021-18276 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier Description: An attacker can trigger a division by 0 in...
Google TensorFlow 数字错误漏洞
Google TensorFlow is an end-to-end open source machine learning platform. A divide-by-zero error vulnerability exists in the tf.rawops.Conv2DBackpropInput implementation in TensorFlow versions prior to 2.5.0. No detailed vulnerability details are provided at this time...