Lucene search
Veracode Vulnerability DatabaseVERACODE:39987HistoryMar 30, 2023 - 6:43 a.m.
Denial Of Service (DoS)
2023-03-3006:43:29
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
dos
vulnerability
tensorflow
randomshuffle
xla
EPSS
0.001
Percentile
36.8%
tensorflow is vulnerable to Denial of Service (DoS) attacks.The vulnerability is due to a null pointer exception in RandomShuffle when XLA is enabled and an input is negative, causing the application to crash.
References
github.com/advisories/GHSA-gf97-q72m-7579
github.com/tensorflow/tensorflow/commit/728113a3be690facad6ce436660a0bc1858017fa
github.com/tensorflow/tensorflow/commit/7f2df4a34bc9d5abeb57fb03051c7e08b98c73c9
github.com/tensorflow/tensorflow/pull/59584
github.com/tensorflow/tensorflow/security/advisories/GHSA-gf97-q72m-7579
Related
cvelist
cvelist
osv
osv
BIT-tensorflow-2023-25674
2024-03-06 11:07:36
TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
2023-03-24 21:54:31
CVE-2023-25674
2023-03-25 00:15:07
nvd
nvd
CVE-2023-25674
2023-03-25 00:15:07
prion
prion
Null pointer dereference
2023-03-25 00:15:00
cve
cve
CVE-2023-25674
2023-03-25 00:15:07
github
github
TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
2023-03-24 21:54:31
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow (CVE-2023-25674)
2023-06-28 20:19:14
cbl_mariner
cbl_mariner
CVE-2023-25674 affecting package tensorflow for versions less than 2.11.1-1
2024-09-30 03:52:41
nessus
nessus
TensorFlow < 2.11.1 Multiple Vulnerabilities
2024-05-20 00:00:00
TensorFlow < 2.12.0 Multiple Vulnerabilities
2024-05-31 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00