Lucene search
K

31 matches found

Github Security Blog
Github Security Blog
added 2022/09/16 7:24 p.m.35 views

TensorFlow vulnerable to `CHECK` fail in `Conv2DBackpropInput`

Impact When Conv2DBackpropInput receives empty outbackprop inputs e.g. 3, 1, 0, 1, the current CPU/GPU kernels CHECK fail one with dnnl, the other with cudnn. This can be used to trigger a denial of service attack. python import tensorflow as tf import numpy as np inputsizes = 3, 1, 1, 2 filter =...

7.5CVSS7.4AI score0.00396EPSS
Exploits0References5Affected Software3
OSV
OSV
added 2022/09/16 7:24 p.m.2 views

GHSA-37JF-MJV6-XFQW TensorFlow vulnerable to `CHECK` fail in `Conv2DBackpropInput`

Impact When Conv2DBackpropInput receives empty outbackprop inputs e.g. 3, 1, 0, 1, the current CPU/GPU kernels CHECK fail one with dnnl, the other with cudnn. This can be used to trigger a denial of service attack. python import tensorflow as tf import numpy as np inputsizes = 3, 1, 1, 2 filter =...

5.9CVSS7AI score0.00396EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/09/16 12:0 a.m.4 views

Google TensorFlow 安全漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google, Inc. in the United States. Google TensorFlow suffers from a security vulnerability that stems from a failure of the current CPU/GPU kernel assertion one with dnnl and the other with cudnn when...

7.5CVSS7.5AI score0.00396EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/16 12:0 a.m.43 views

Google TensorFlow 安全漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google. Google TensorFlow has a security vulnerability that stems from the fact that the implementation of Conv2DBackpropInput requires inputsizes to be 4-dimensional. Otherwise, it gives an assertion failu...

7.5CVSS7.4AI score0.00383EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2021/05/21 2:21 p.m.29 views

Division by 0 in `Conv2DBackpropInput`

Impact An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput: python import tensorflow as tf inputtensor = tf.constant52, 1, 1, 5, shape=4, dtype=tf.int32 filtertensor = tf.constant, shape=0, 1, 5, 0, dtype=tf.float32 outbackprop = tf.constant, shape=52, 1, 1, 0, dtype=tf.float...

7.8CVSS2.5AI score0.00201EPSS
Exploits1References7Affected Software3
CNVD
CNVD
added 2021/05/18 12:0 a.m.10 views

TensorFlow divide-by-zero error vulnerability (CNVD-2021-36565)

Google TensorFlow is an end-to-end open source machine learning platform. A divide-by-zero error vulnerability exists in the tf.rawops.Conv2DBackpropInput implementation in TensorFlow versions prior to 2.5.0. No detailed vulnerability details are provided at this time...

7.8CVSS6.4AI score0.00201EPSS
Exploits1References1
PyPA
PyPA
added 2021/05/14 8:15 p.m.3 views

PYSEC-2021-453

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...

7.8CVSS7AI score0.00201EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2021/05/14 8:15 p.m.5 views

PYSEC-2021-162

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...

7.8CVSS5.9AI score0.00201EPSS
Exploits1References2
OSV
OSV
added 2021/05/14 8:15 p.m.3 views

PYSEC-2021-651

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2DBackpropInput. This is because the...

7.8CVSS5.9AI score0.00201EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/05/14 12:0 a.m.2 views

PT-2021-18276 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier Description: An attacker can trigger a division by 0 in...

7.8CVSS7.3AI score0.00201EPSS
Exploits1References14
CNNVD
CNNVD
added 2021/05/14 12:0 a.m.7 views

Google TensorFlow 数字错误漏洞

Google TensorFlow is an end-to-end open source machine learning platform. A divide-by-zero error vulnerability exists in the tf.rawops.Conv2DBackpropInput implementation in TensorFlow versions prior to 2.5.0. No detailed vulnerability details are provided at this time...

7.8CVSS5.6AI score0.00201EPSS
Exploits1References3
Rows per page
Query Builder