3 matches found
PYSEC-2026-1007 Heap buffer overflow due to incorrect hash function in TensorFlow
Impact The TensorKey hash function used total estimated AllocatedBytes, which a is an estimate per tensor, and b is a very poor hash function for constants e.g. int32t. It also tried to access individual tensor bytes through tensor.data of size AllocatedBytes. This led to ASAN failures because th...
Google TensorFlow 缓冲区错误漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. A security vulnerability exists in Google TensorFlow version 2.8.0, which stems from the TensorKey hash function using the very poorly implemented constant hash function AllocatedBytes for total...
PT-2022-19463
Name of the Vulnerable Software and Affected Versions TensorFlow version 2.8.0 Description The issue arises from the TensorKey hash function using total estimated AllocatedBytes, which is an estimate per tensor and a poor hash function for constants, such as int32 t. It also attempts to access...