CVE-2021-37675

TensorFlow is an end-to-end open source platform for machine learning. In affected versions most implementations of convolution operators in TensorFlow are affected by a division by 0 vulnerability where an attacker can trigger a denial of service via a crash. The shape inference implementation i...

CVE-2021-37675 Division by 0 in most convolution operators in TensorFlow

TensorFlow is an end-to-end open source platform for machine learning. In affected versions most implementations of convolution operators in TensorFlow are affected by a division by 0 vulnerability where an attacker can trigger a denial of service via a crash. The shape inference implementation i...

PT-2021-21793 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow version 2.5.1 TensorFlow version 2.4.3 TensorFlow version 2.3.4 Description: The issue is related to a division by 0 vulnerability in most implementations of convolution operators in TensorFlow,...

FFmpeg buffer overflow vulnerability (CNVD-2021-39533)

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the convolutiony10bit function in libavfilter/vfvmafmotion.c in FFmpeg version 4.2. An attacker can...

DEBIAN-CVE-2020-22019

Buffer Overflow vulnerability in FFmpeg 4.2 at convolutiony10bit in libavfilter/vfvmafmotion.c, which could let a remote malicious user cause a Denial of Service...

CVE-2020-22019

Buffer Overflow vulnerability in FFmpeg 4.2 at convolutiony10bit in libavfilter/vfvmafmotion.c, which could let a remote malicious user cause a Denial of Service...

FFmpeg 缓冲区错误漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the convolutiony10bit function in libavfilter/vfvmafmotion.c in FFmpeg version 4.2. An attacker can...

GHSA-RF3H-XGV5-2Q39 Division by zero in TFLite's implementation of `DepthwiseConv`

Impact The implementation of the DepthwiseConv TFLite operator is vulnerable to a division by zero error: cc int numinputchannels = SizeOfDimensioninput, 3; TFLITEENSUREEQcontext, numfilterchannels % numinputchannels, 0; An attacker can craft a model such that input's fourth dimension would be 0...

GHSA-3QGW-P4FM-X7GF Division by zero in TFLite's convolution code

Impact TFLite's convolution code has multiple division where the divisor is controlled by the user and not checked to be non-zero. For example: cc const int inputsize = NumElementsinput / SizeOfDimensioninput, 0; Patches We have patched the issue in GitHub commit...

Division by zero in TFLite's convolution code

Impact TFLite's convolution code has multiple division where the divisor is controlled by the user and not checked to be non-zero. For example: cc const int inputsize = NumElementsinput / SizeOfDimensioninput, 0; Patches We have patched the issue in GitHub commit...

GHSA-VFR4-X8J2-3RF9 Division by zero in TFLite's implementation of `TransposeConv`

Impact The optimized implementation of the TransposeConv TFLite operator is vulnerable to a division by zero error: cc int heightcol = height + padt + padb - filterh / strideh + 1; int widthcol = width + padl + padr - filterw / stridew + 1; An attacker can craft a model such that strideh,w values...

GHSA-X4G7-FVJJ-PRG8 Division by 0 in `QuantizedConv2D`

Impact An attacker can trigger a division by 0 in tf.rawops.QuantizedConv2D: python import tensorflow as tf input = tf.zeros1, 1, 1, 1, dtype=tf.quint8 filter = tf.constant, shape=1, 0, 1, 1, dtype=tf.quint8 mininput = tf.constant0.0 maxinput = tf.constant0.0001 minfilter = tf.constant0.0 maxfilt...

CVE-2021-29594

TensorFlow is an end-to-end open source platform for machine learning. TFLite's convolution codehttps://github.com/tensorflow/tensorflow/blob/09c73bca7d648e961dd05898292d91a8322a9d45/tensorflow/lite/kernels/conv.cc has multiple division where the divisor is controlled by the user and not checked ...

PYSEC-2021-455

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.QuantizedConv2D. This is because the...

PYSEC-2021-239

TensorFlow is an end-to-end open source platform for machine learning. The implementation of the DepthwiseConv TFLite operator is vulnerable to a division by zero...

PYSEC-2021-163

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.Conv2D. This is because the implementationhttps://github.com/tensorflow/tensorflow/blob/988087bd83f144af14087fe4fecee2d250d93737/tensorflow/core/kernels/convops.ccL261-L263...

PYSEC-2021-239

TensorFlow is an end-to-end open source platform for machine learning. The implementation of the DepthwiseConv TFLite operator is vulnerable to a division by zero...

PYSEC-2021-643

TensorFlow is an end-to-end open source platform for machine learning. A malicious user could trigger a division by 0 in Conv3D implementation. The implementationhttps://github.com/tensorflow/tensorflow/blob/42033603003965bffac51ae171b51801565e002d/tensorflow/core/kernels/convops3d.ccL143-L145 do...

PYSEC-2021-653

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a division by 0 in tf.rawops.QuantizedConv2D. This is because the...

PYSEC-2021-516

TensorFlow is an end-to-end open source platform for machine learning. The optimized implementation of the TransposeConv TFLite operator is vulnerable to a division by zero error. An attacker can craft a model such that strideh,w values are 0. Code calling this function must validate these...