5 matches found
SUSE CVE-2021-41220
TensorFlow is an open source platform for machine learning. In affected versions the async implementation of CollectiveReduceV2 suffers from a memory leak and a use after free. This occurs due to the asynchronous computation and the fact that objects that have been std::moved from are still...
iqradre (>=0.1.5 <=0.2.1), lurara (>=0.1.0 <=0.1.1) +5 more potentially affected by CVE-2021-41220 via tensorflow-gpu (=2.6.0)
tensorflow-gpu PYPI version =2.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - iqradre =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2021-41220 Source advisory: OSV:PYSEC-2021-827...
alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +35 more potentially affected by CVE-2021-41220 via tensorflow (>=2.6.0 <=2.6.0rc2)
tensorflow PYPI version =2.6.0, =0.0.2, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =0.1.5, =0.2.1 and more Source cves: CVE-2021-41220 Source advisory: OSV:PYSEC-2021-412...
CVE-2021-41220
CVE-2021-41220 (TensorFlow) — Normal details The vulnerability affects TensorFlow's async CollectiveReduceV2, causing a memory leak and use-after-free when objects moved via std::move are still accessed during asynchronous processing. The issue path is described in the CVE entry and related advis...
CVE-2021-41220 Use after free in `CollectiveReduceV2`
TensorFlow is an open source platform for machine learning. In affected versions the async implementation of CollectiveReduceV2 suffers from a memory leak and a use after free. This occurs due to the asynchronous computation and the fact that objects that have been std::moved from are still...