Tensorflow is vulnerable to denial of service. An attacker may exploit the vulnerability by altering a SavedModel
such that Grappler optimizer would attempt to build a tensor using a reference dtype
.
github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/framework/tensor.cc#L733-L781
github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/grappler/optimizers/constant_folding.cc#L1328-L1402
github.com/tensorflow/tensorflow/commit/6b5adc0877de832b2a7c189532dbbbc64622eeb6
github.com/tensorflow/tensorflow/security/advisories/GHSA-fx5c-h9f6-rv7c