Lucene search
K

6 matches found

OSV
OSV
added 2022/11/21 10:3 p.m.4 views

GHSA-G9FM-R5MM-RF9F `CHECK_EQ` fail via input in `SparseMatrixNNZ`

Impact An input sparsematrix that is not a matrix with a shape with rank 0 will trigger a CHECK fail in tf.rawops.SparseMatrixNNZ. python import tensorflow as tf tf.rawops.SparseMatrixNNZsparsematrix= Patches We have patched the issue in GitHub commit f856d02e5322821aad155dad9b3acab1e9f5d693. The...

4.8CVSS5.8AI score0.0044EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/09/16 10:28 p.m.27 views

TensorFlow vulnerable to `CHECK` fail in `tf.linalg.matrix_rank`

Impact When tf.linalg.matrixrank receives an empty input a, the GPU kernel gives a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf a = tf.constant, shape=0, 1, 1, dtype=tf.float32 tf.linalg.matrixranka=a Patches We have patched the issue in GitHub...

7.5CVSS7.3AI score0.00405EPSS
Exploits0References5Affected Software3
Github Security Blog
Github Security Blog
added 2022/09/16 10:9 p.m.31 views

TensorFlow vulnerable to `CHECK` fail in `EmptyTensorList`

Impact If EmptyTensorList receives an input elementshape with more than one dimension, it gives a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf tf.rawops.EmptyTensorListelementshape=tf.onesdtype=tf.int32, shape=1, 0,...

7.5CVSS7.4AI score0.00405EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/09/16 7:25 p.m.33 views

TensorFlow vulnerable to `CHECK` fail in `tf.sparse.cross`

Impact If tf.sparse.cross receives an input separator that is not a scalar, it gives a CHECK fail that can be used to trigger a denial of service attack. python import tensorflow as tf tf.sparse.crossinputs=,name='a',separator=tf.constant'a', 'b',dtype=tf.string Patches We have patched the issue ...

7.5CVSS7.4AI score0.00405EPSS
Exploits0References5Affected Software3
OSV
OSV
added 2022/05/24 10:13 p.m.3 views

GHSA-5WPJ-C6F7-24X8 Undefined behavior when users supply invalid resource handles

Impact Multiple TensorFlow operations misbehave in eager mode when the resource handle provided to them is invalid: python import tensorflow as tf tf.rawops.QueueIsClosedV2handle= python import tensorflow as tf tf.summary.flushwriter= In graph mode, it would have been impossible to perform these...

5.5CVSS6AI score0.00317EPSS
Exploits1References9
Github Security Blog
Github Security Blog
added 2022/05/24 4:38 p.m.33 views

Missing validation causes `TensorSummaryV2` to crash

Impact The implementation of tf.rawops.TensorSummaryV2 does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service attack: python import numpy as np import tensorflow as tf tf.rawops.TensorSummaryV2 tag=np.array'test',...

5.5CVSS6AI score0.00317EPSS
Exploits1References9Affected Software3
Rows per page
Query Builder