tensorflow is vulnerable to Denial of Service (DoS) attacks. The vulnerability is due to a floating point exception if the stride and window size are not positive for the raw_ops.AvgPoolGrad
function, causing the application to crash.
github.com/advisories/GHSA-rcf8-g8jv-vg6p
github.com/tensorflow/tensorflow/commit/1295ae4dbb52fe06b19733b0257e2340d7b63b8d
github.com/tensorflow/tensorflow/commit/4a9e857b53ddf9509b7e3701116be33a7b9e9f85
github.com/tensorflow/tensorflow/pull/59476
github.com/tensorflow/tensorflow/security/advisories/GHSA-rcf8-g8jv-vg6p