46 matches found
CVE-2021-41227
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
EUVD-2021-0280
Malware in sbrugna...
EUVD-2020-0215
Malware in sbrugna...
EUVD-2021-0449
Malware in sbrugna...
CVE-2021-29539
TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.ImmutableConsthttps://www.tensorflow.org/apidocs/python/tf/rawops/ImmutableConst with a dtype of tf.resource or tf.variant results in a segfault in the implementation as code assumes that the tensor contents...
CVE-2020-26268
In affected versions of TensorFlow the tf.rawops.ImmutableConst operation returns a constant tensor created from a memory mapped file which is assumed immutable. However, if the type of the tensor is not an integral type, the operation crashes the Python interpreter as it tries to write to the...
BIT-TENSORFLOW-2020-26268 Write to immutable memory region in TensorFlow
In affected versions of TensorFlow the tf.rawops.ImmutableConst operation returns a constant tensor created from a memory mapped file which is assumed immutable. However, if the type of the tensor is not an integral type, the operation crashes the Python interpreter as it tries to write to the...
BIT-TENSORFLOW-2021-29539 Segfault in tf.raw_ops.ImmutableConst
TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.ImmutableConsthttps://www.tensorflow.org/apidocs/python/tf/rawops/ImmutableConst with a dtype of tf.resource or tf.variant results in a segfault in the implementation as code assumes that the tensor contents...
SUSE CVE-2021-29539
TensorFlow is an end-to-end open source platform for machine learning. Calling tf.rawops.ImmutableConsthttps://www.tensorflow.org/apidocs/python/tf/rawops/ImmutableConst with a dtype of tf.resource or tf.variant results in a segfault in the implementation as code assumes that the tensor contents...
SUSE CVE-2021-41227
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
Arbitrary memory read in `ImmutableConst`
Impact The ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents: python import tensorflow as tf with open'/tmp/test','wb' as f: f.writeb'\xe2'128 data = tf.rawops.ImmutableConstdtype=tf.string,shape=3,memoryregionname='/tmp/test' printdata This is because t...
GHSA-J8C8-67VP-6MX7 Arbitrary memory read in `ImmutableConst`
Impact The ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents: python import tensorflow as tf with open'/tmp/test','wb' as f: f.writeb'\xe2'128 data = tf.rawops.ImmutableConstdtype=tf.string,shape=3,memoryregionname='/tmp/test' printdata This is because t...
Arbitrary Memory Read
tensorflow is vulnerable to Arbitrary Memory Read. The vulnerability exists because the tstring class has a special case for memory mapped strings and the ImmutableConst operation does not offer any support for this datatype, allowing an attacker to read the arbitrary memory and it's leads to...
Google TensorFlow buffer overflow vulnerability (CNVD-2021-87034)
Google TensorFlow is an end-to-end open source platform for machine learning from Google, U.S. A buffer overflow vulnerability exists in Google TensorFlow, which stems from the fact that the ImmutableConst operation can be tricked into reading arbitrary memory content. This is because the...
CVE-2021-41227
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
CVE-2021-41227
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
PYSEC-2021-419
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
PYSEC-2021-636
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
PYSEC-2021-419
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...
PYSEC-2021-834
TensorFlow is an open source platform for machine learning. In affected versions the ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation...