14329 matches found
CVE-2022-29192
TensorFlow vulnerability CVE-2022-29192 affects tf.raw_ops.QuantizeAndDequantizeV4Grad; it does not fully validate input arguments, causing a CHECK failure that can trigger a denial of service. Affected versions are prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4. A patch exists in 2.9.0 and has been bac...
CVE-2022-29192 Missing validation crashes `QuantizeAndDequantizeV4Grad` in TensorFlow
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.QuantizeAndDequantizeV4Grad does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service...
CVE-2022-29192
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.QuantizeAndDequantizeV4Grad does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service...
PT-2022-19455 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.SpaceToBatchND is vulnerable to an integer overflow. Thi...
Google TensorFlow输入验证错误漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to an input validation error in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, which originates in tf.rawops QuantizeAndDequantizeV4Grad does not fully validate the input parameters and c...
PT-2022-19444 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.QuantizeAndDequantizeV4Grad does not fully validate the...
Google TensorFlow 安全漏洞
Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. Google TensorFlow versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4 are vulnerable to a code issue stemming from tf.rawops. QuantizedConv2D does not fully validate input parameters. No detailed...
PT-2022-19452 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.LSTMBlockCell does not fully validate the input argument...
PT-2022-19461 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: TensorFlow is an open source platform for machine learning. The macros that TensorFlow us...
PT-2022-19460 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.EditDistance has incomplete validation, allowing users t...
Google TensorFlow 输入验证错误漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4 due to a vulnerability in tf.rawops. UnsortedSegmentJoin has incomplete validation of the input parameters. An attacker could use this...
Google TensorFlow资源管理错误漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. A resource management error vulnerability exists in Google TensorFlow versions prior to 2.9.0, prior to 2.8.1, prior to 2.7.2, and prior to 2.6.4, which stems from the fact that tf.ragged.consta...
Google TensorFlow输入验证错误漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to integer overflow in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, which originates from tf.rawops. SpaceToBatchND has an integer overflow problem. An attacker could use this...
Google TensorFlow输入验证错误漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to input validation errors in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, stemming from tf.rawops DeleteSessionTensor does not fully validate the input parameters and can be exploited ...
Google TensorFlow代码问题漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to a code issue in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, which stems from tf.rawops. SparseTensorDenseAdd has incomplete validation for the input parameters. No detailed...
Google TensorFlow输入验证错误漏洞
Google TensorFlow, an end-to-end open source platform for machine learning from Google, Inc. is vulnerable to input validation errors in versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, stemming from tf.rawops GetSessionTensor does not fully validate the input parameters and can be exploited to...
PT-2022-19458 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.SparseTensorDenseAdd does not fully validate the input...
Google TensorFlow输入验证错误漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. An input validation error vulnerability exists in Google TensorFlow versions prior to 2.9.0, prior to 2.8.1, prior to 2.7.2, and prior to 2.6.4, which stems from the fact that tf.rawops.StagePee...
PT-2022-19448 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.9.0 TensorFlow versions prior to 2.8.1 TensorFlow versions prior to 2.7.2 TensorFlow versions prior to 2.6.4 Description: The implementation of tf.raw ops.Conv3DBackpropFilterV2 does not fully validate the input...
Google TensorFlow 输入验证错误漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. An input validation error vulnerability exists in TensorFlow versions prior to 2.9.0, 2.8.1, 2.7.2, and 2.6.4, which stems from the fact that tf.rawops.SparseTensorToCSRSparseMatrix does not ful...