CVE-2021-35958
TensorFlow prior to 2.5.1/vulnerable until patched: TF 2.5.0 and earlier allow arbitrary file overwrite via a crafted archive when tf.keras.utils.get_file is used with extract=True. Root cause: get_file extracting an archive from untrusted sources can overwrite arbitrary files. Affected component...