Lucene search
K

47 matches found

Github Security Blog
Github Security Blog
added 2020/09/25 6:28 p.m.33 views

Undefined behavior in Tensorflow

Impact If a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked:...

5.3CVSS1.2AI score0.00749EPSS
Exploits1References9Affected Software3
OSV
OSV
added 2020/09/25 6:28 p.m.5 views

GHSA-Q8QJ-FC9Q-CPHR Undefined behavior in Tensorflow

Impact If a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked:...

6.9CVSS6AI score0.00749EPSS
Exploits1References9
OSV
OSV
added 2020/09/25 6:28 p.m.3 views

GHSA-8FXW-76PX-3RXV Memory leak in Tensorflow

Impact If a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure: https://github.com/tensorflow/tensorflow/blob/0e68f4d3295eb0281a517c3662f6698992b7b2cf/tensorflow/c/eager/dlpack.ccL100-L104 The allocated memory is from...

5.3CVSS5.8AI score0.00684EPSS
Exploits1References9
Github Security Blog
Github Security Blog
added 2020/09/25 6:28 p.m.147 views

Memory leak in Tensorflow

Impact If a user passes a list of strings to dlpack.todlpack there is a memory leak following an expected validation failure: https://github.com/tensorflow/tensorflow/blob/0e68f4d3295eb0281a517c3662f6698992b7b2cf/tensorflow/c/eager/dlpack.ccL100-L104 The allocated memory is from...

4.3CVSS1.5AI score0.00684EPSS
Exploits1References9Affected Software3
Positive Technologies
Positive Technologies
added 2020/09/25 12:0 a.m.2 views

PT-2020-14262 · Google +1 · Tensorflow +1

Name of the Vulnerable Software and Affected Versions: Tensorflow versions prior to 2.2.1 Tensorflow versions prior to 2.3.1 Description: The issue arises when a user passes an invalid argument to dlpack.to dlpack, causing variables to bind to nullptr while setting a status variable to the error...

9.8CVSS6AI score0.01235EPSS
Exploits16References68
Positive Technologies
Positive Technologies
added 2020/09/25 12:0 a.m.5 views

PT-2020-14264 · Google +1 · Tensorflow +1

Name of the Vulnerable Software and Affected Versions: Tensorflow versions prior to 2.2.1 Tensorflow versions prior to 2.3.1 Description: The implementation of dlpack.to dlpack can be made to use uninitialized memory, resulting in further memory corruption. This occurs because the pybind11 glue...

9.8CVSS6AI score0.01235EPSS
Exploits16References68
Positive Technologies
Positive Technologies
added 2020/09/25 12:0 a.m.2 views

PT-2020-14263 · Google +1 · Tensorflow +1

Name of the Vulnerable Software and Affected Versions: Tensorflow versions prior to 2.2.1 Tensorflow versions prior to 2.3.1 Description: The issue occurs when a user passes a list of strings to dlpack.to dlpack, resulting in a memory leak following an expected validation failure. This happens...

9.8CVSS5.8AI score0.01235EPSS
Exploits16References68
Rows per page
Query Builder