8 matches found
Google TensorFlow Buffer Overflow Vulnerability (CNVD-2022-80683)
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a buffer overflow vulnerability that stems from the lack of proper validation of user-supplied data by Bcast::ToShape, which can be exploited by an attacker to cau...
Denial Of Service (DoS)
Tensorflow is vulnerable to denial of service. The vulnerability exists because the input size of BCast::ToShape is not properly handled which allows an attacker to crash the application by sending inputs larger than int32...
`CHECK` fail in `BCast` overflow
Impact If BCast::ToShape is given input larger than an int32, it will crash, despite being supposed to handle up to an int64. An example can be seen in tf.experimental.numpy.outer by passing in large input to the input b. python import tensorflow as tf value = tf.constantshape=2, 1024, 1024, 1024...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS when BCast::ToShape is given input larger than an int32, even if it is being supposed to handle up to an int64. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible...
CVE-2022-41890
TensorFlow is an open source platform for machine learning. If BCast::ToShape is given input larger than an int32, it will crash, despite being supposed to handle up to an int64. An example can be seen in tf.experimental.numpy.outer by passing in large input to the input b. We have patched the...
Design/Logic Flaw
TensorFlow is an open source platform for machine learning. If BCast::ToShape is given input larger than an int32, it will crash, despite being supposed to handle up to an int64. An example can be seen in tf.experimental.numpy.outer by passing in large input to the input b. We have patched the...
CVE-2022-41890 `CHECK` fail in `BCast` overflow in Tensorflow
TensorFlow is an open source platform for machine learning. If BCast::ToShape is given input larger than an int32, it will crash, despite being supposed to handle up to an int64. An example can be seen in tf.experimental.numpy.outer by passing in large input to the input b. We have patched the...
CVE-2022-41890
CVE-2022-41890 (TensorFlow) : A bug in BCast::ToShape can crash TensorFlow when given input larger than int32, despite intended int64 support. A GitHub commit (8310bf8dd188ff780e7fc53245058215a05bdbe5) patches the issue; the fix will be in TensorFlow 2.11 and will be cherry-picked to 2.10.1, 2.9....