TensorFlow has Floating Point Exception in TFLite in conv kernel

...

TensorFlow has Null Pointer Error in RandomShuffle with XLA enable

...

TensorFlow has Null Pointer Error in LookupTableImportV2

...

TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize

...

TensorFlow vulnerable to heap out-of-buffer read in the QuantizeAndDequantize operation

...

TensorFlow has Floating Point Exception in AudioSpectrogram

...

TensorFlow vulnerable to integer overflow in EditDistance

...

TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`

...

TensorFlow vulnerable to Out-of-Bounds Read in GRUBlockCellGrad

...

TensorFlow has double free in Fractional(Max/Avg)Pool

...

TensorFlow has null dereference on ParallelConcat with XLA

...

TensorFlow has Segfault in Bincount with XLA

...

OPENSUSE-SU-2024:12355-1 tensorflow-lite-2.10.0-1.1 on GA media

These are all security issues fixed in the tensorflow-lite-2.10.0-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:12116-1 tensorflow-lite-2.9.1-1.1 on GA media

These are all security issues fixed in the tensorflow-lite-2.9.1-1.1 package on the GA media of openSUSE Tumbleweed...

BIT-MLFLOW-2024-37057

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...

Deserialization Of Untrusted Data

mlflow is vulnerable to Deserialization of Untrusted Data. The vulnerability is due to inadequate input validation in the loadcustomobjects function within mlflow/tensorflow/init.py, which allows attackers to execute arbitrary code by injecting a malicious pickle object into the Tensorflow model...

GHSA-J8MG-PQC5-X9GJ MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0rc0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0rc0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...

CVE-2024-37057

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0rc0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...

CVE-2024-37057

Deserialization of untrusted data can occur in versions of the MLflow platform running version 2.0.0rc0 or newer, enabling a maliciously uploaded Tensorflow model to run arbitrary code on an end user’s system when interacted with...