8 matches found
CVE-2022-41897
TensorFlow is an open source platform for machine learning. If FractionMaxPoolGrad is given outsize inputs rowpoolingsequence and colpoolingsequence, TensorFlow will crash. We have patched the issue in GitHub commit d71090c3e5ca325bdf4b02eb236cfb3ee823e927. The fix will be included in TensorFlow...
TensorFlow < 2.10.1 Multiple Vulnerabilities
The version of TensorFlow installed on the remote host is prior to 2.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the release notes. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...
CBL Mariner 2.0 Security Update: tensorflow (CVE-2022-41897)
The version of tensorflow installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41897 advisory. - TensorFlow is an open source platform for machine learning. If FractionMaxPoolGrad is given outsize inpu...
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of TensorFlow. Vulnerability Details CVEID:CVE-2022-41910 DESCRIPTION: TensorFlow is vulnerable to a denial of service, caused by a heap-based buffer overflow in the MakeGrapplerFunctionItem function i...
CVE-2022-41897 affecting package tensorflow for versions less than 2.11.0-1
CVE-2022-41897 affecting package tensorflow for versions less than 2.11.0-1. An upgraded version of the package is available that resolves this issue...
animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +189 more potentially affected by CVE-2022-41897 via tensorflow-gpu (>=1.10.1 <=2.8.3)
tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-41897 Source advisory: OSV:GHSA-F2W8-JW48-FR7J...
CVE-2022-41897 `FractionalMaxPoolGrad` Heap out of bounds read in Tensorflow
TensorFlow is an open source platform for machine learning. If FractionMaxPoolGrad is given outsize inputs rowpoolingsequence and colpoolingsequence, TensorFlow will crash. We have patched the issue in GitHub commit d71090c3e5ca325bdf4b02eb236cfb3ee823e927. The fix will be included in TensorFlow...
CVE-2022-41897
CVE-2022-41897 affects TensorFlow when FractionMaxPoolGrad receives outsize inputs in row_pooling_sequence or col_pooling_sequence, causing a crash due to a heap/out-of-bounds read. The issue is addressed in a GitHub commit (d71090c3e5ca325bdf4b02eb236cfb3ee823e927) and the fix will be included i...