Lucene search
Veracode Vulnerability DatabaseVERACODE:34005HistoryFeb 04, 2022 - 5:39 p.m.
Denial Of Service (DoS)
2022-02-0417:39:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
denial of service
vulnerability
memory allocation
threadpoolhandle
software
EPSS
0.002
Percentile
60.0%
tensorflow is vulnerable to denial of service. The vulnerability exists due to the lack of santization of the allocation of memory during the implementation of ThreadPoolHandle.
References
github.com/tensorflow/tensorflow/blob/5100e359aef5c8021f2e71c7b986420b85ce7b3d/tensorflow/core/kernels/data/experimental/threadpool_dataset_op.cc#L79-L135
github.com/tensorflow/tensorflow/commit/2350236983b10608231422d7d6bd636cdd85348d
github.com/tensorflow/tensorflow/commit/bf32fe44683b90e05f5ea35bed0456926915c5fb
github.com/tensorflow/tensorflow/commit/cf6959fce015c30557c755553fb9612a3bf7691d
github.com/tensorflow/tensorflow/commit/e3749a6d5d1e8d11806d4a2e9cc3123d1a90b75e
github.com/tensorflow/tensorflow/security/advisories/GHSA-c582-c96p-r5cq
Related
osv
osv
Memory exhaustion in Tensorflow
2022-02-10 00:20:29
PYSEC-2022-56
2022-02-03 12:15:00
PYSEC-2022-111
2022-02-03 12:15:00
nvd
nvd
CVE-2022-21732
2022-02-03 12:15:07
cnvd
cnvd
Google Tensorflow Denial of Service Vulnerability (CNVD-2022-13928)
2022-02-21 00:00:00
cve
cve
CVE-2022-21732
2022-02-03 12:15:07
cvelist
cvelist
CVE-2022-21732 Memory exhaustion in Tensorflow
2022-02-03 11:21:48
github
github
Memory exhaustion in Tensorflow
2022-02-10 00:20:29
prion
prion
Design/Logic Flaw
2022-02-03 12:15:00
