Lucene search
K

5 matches found

OSV
OSV
added 2024/03/06 11:20 a.m.17 views

BIT-TENSORFLOW-2020-15191 Undefined behavior in Tensorflow

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked. Hence, code...

5.3CVSS5.3AI score0.00749EPSS
Exploits1References5
OSV
OSV
added 2024/03/06 11:20 a.m.21 views

BIT-TENSORFLOW-2020-15192 Memory leak in Tensorflow

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure. The issue occurs because the status argument during validation failures is not properly checked. Since each of the above methods ca...

4.3CVSS4.4AI score0.00684EPSS
Exploits1References5
NVD
NVD
added 2020/09/25 7:15 p.m.29 views

CVE-2020-15193

In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of dlpack.todlpack can be made to use uninitialized memory resulting in further memory corruption. This is because the pybind11 glue code assumes that the argument is a tensor. However, there is nothing stopping users from passing ...

7.1CVSS0.00681EPSS
Exploits1References4
Prion
Prion
added 2020/09/25 7:15 p.m.14 views

Input validation

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure. The issue occurs because the status argument during validation failures is not properly checked. Since each of the above methods ca...

4CVSS4.3AI score0.00684EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2020/09/25 6:40 p.m.31 views

CVE-2020-15193 Memory corruption in Tensorflow

In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of dlpack.todlpack can be made to use uninitialized memory resulting in further memory corruption. This is because the pybind11 glue code assumes that the argument is a tensor. However, there is nothing stopping users from passing ...

7.1CVSS6.9AI score0.00681EPSS
Exploits1References4
Rows per page
Query Builder