14329 matches found
BIT-2020-15197
In Tensorflow before version 2.3.1, the SparseCountSparseOutput implementation does not validate that the input arguments form a valid sparse tensor. In particular, there is no validation that the indices tensor has rank 2. This tensor must be a matrix because code assumes its elements are access...
AZL-38099 CVE-2023-38546 affecting package tensorflow for versions less than 2.16.1-1
This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its API, an application creates "easy handles" that are the individual handles for single transfers. libcurl provides a functio...
AZL-37886 CVE-2023-38545 affecting package tensorflow for versions less than 2.16.1-1
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host na...
GHSA-G4MX-Q9VG-27P4 vulnerabilities
Vulnerabilities for packages: az, py3-cassandra-medusa, kubeflow-volumes-web-app, py3-tensorflow-serving-api, kubeflow-jupyter-web-app, py3-pipenv, jwt-tool, kubeflow-katib...
GHSA-G4MX-Q9VG-27P4 vulnerabilities
Vulnerabilities for packages: py3-tensorflow-serving-api, py3.11-pytorch-cuda-12.3, jwt-tool, py3-torchvision-cuda-11.8, kubeflow-jupyter-web-app, py3.13-scanner-test-libraries, request-1276, az, nvidia-nsight-compute-13.1, py3-pipenv, py3.11-torchaudio-cuda-12.3, py3.11-torchvision-cuda-12.3,...
CVE-2023-45803 vulnerabilities
Vulnerabilities for packages: py3-tensorflow-serving-api, py3.11-pytorch-cuda-12.3, jwt-tool, py3-torchvision-cuda-11.8, kubeflow-jupyter-web-app, py3.13-scanner-test-libraries, request-1276, az, nvidia-nsight-compute-13.1, py3-pipenv, py3.11-torchaudio-cuda-12.3, py3.11-torchvision-cuda-12.3,...
CVE-2023-45803 vulnerabilities
Vulnerabilities for packages: az, py3-cassandra-medusa, kubeflow-volumes-web-app, py3-tensorflow-serving-api, kubeflow-jupyter-web-app, py3-pipenv, jwt-tool, kubeflow-katib...
CVE-2023-25670 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25670 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25662 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25662 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25666 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25666 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25660 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25660 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25658 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25658 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25661 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25661 affecting package tensorflow for versions less than 2.11.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-25665 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25665 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25664 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25664 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25673 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25673 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-27579 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-27579 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25669 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25669 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25663 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25663 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...
CVE-2023-25668 affecting package tensorflow for versions less than 2.11.1-1
CVE-2023-25668 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...