Lucene search
Veracode Vulnerability DatabaseVERACODE:33999HistoryFeb 04, 2022 - 9:58 a.m.
Denial Of Service (DoS)
2022-02-0409:58:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
denial of service
dos
sparsecountsparseoutput
tensorflow
assertion failure
EPSS
0.005
Percentile
76.3%
tensorflow is vulnerable to denial of service. A faulty bin count operation performed in SparseCountSparseOutput causes an assertion failure, allowing an attacker to pass malicious argument to trigger a CHECK-fail.
References
github.com/tensorflow/tensorflow/blob/5100e359aef5c8021f2e71c7b986420b85ce7b3d/tensorflow/core/kernels/count_ops.cc#L168-L273
github.com/tensorflow/tensorflow/commit/2b7100d6cdff36aa21010a82269bc05a6d1cc74a
github.com/tensorflow/tensorflow/commit/adbbabdb0d3abb3cdeac69e38a96de1d678b24b3
github.com/tensorflow/tensorflow/security/advisories/GHSA-44qp-9wwf-734r
github.com/tensorflow/tensorflow/security/advisories/GHSA-f2vv-v9cg-qhh7
Related
osv
osv
BIT-tensorflow-2022-21740
2024-03-06 11:15:34
PYSEC-2022-64
2022-02-03 15:15:00
CVE-2022-21740
2022-02-03 15:15:08
prion
prion
Design/Logic Flaw
2022-02-03 15:15:00
cnvd
cnvd
Google TensorFlow buffer overflow vulnerability (CNVD-2022-11510)
2022-02-16 00:00:00
cve
cve
CVE-2022-21740
2022-02-03 15:15:08
github
github
Heap overflow in Tensorflow
2022-02-09 23:47:14
cvelist
cvelist
CVE-2022-21740 Heap overflow in Tensorflow
2022-02-03 14:30:47
nvd
nvd
CVE-2022-21740
2022-02-03 15:15:08
