VYPR

Tensorflow

by Nbsdx

pypi: tensorflow

Source repositories

CVEs (430)

  • CVE-2022-36014MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.01

    TensorFlow is an open source platform for machine learning. When `mlir::tfg::TFOp::nameAttr` receives null type list attributes, it crashes. We have patched the issue in GitHub commits 3a754740d5414e362512ee981eefba41561a63a6 and a0f0b9a21c9270930457095092f558fbad4c03e5. The fix…

  • CVE-2022-36013MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.01

    TensorFlow is an open source platform for machine learning. When `mlir::tfg::GraphDefImporter::ConvertNodeDef` tries to convert NodeDefs without an op name, it crashes. We have patched the issue in GitHub commit a0f0b9a21c9270930457095092f558fbad4c03e5. The fix will be included…

  • CVE-2022-36012MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.01

    TensorFlow is an open source platform for machine learning. When `mlir::tfg::ConvertGenericFunctionToFunctionDef` is given empty function attributes, it crashes. We have patched the issue in GitHub commit ad069af92392efee1418c48ff561fd3070a03d7b. The fix will be included in…

  • CVE-2022-36011MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `mlir::tfg::ConvertGenericFunctionToFunctionDef` is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit 1cf45b831eeb0cab8655c9c7c5d06ec6f45fc41b. The fix will be…

  • CVE-2022-36005MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `tf.quantization.fake_quant_with_min_max_vars_gradient` receives input `min` or `max` that is nonscalar, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub…

  • CVE-2022-36004MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `tf.random.gamma` receives large input shape and rates, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit 552bfced6ce4809db5f3ca305f60ff80dd40c5a3. The…

  • CVE-2022-36003MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `RandomPoissonV2` receives large input shape and rates, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit 552bfced6ce4809db5f3ca305f60ff80dd40c5a3. The…

  • CVE-2022-36002MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `Unbatch` receives a nonscalar input `id`, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit 4419d10d576adefa36b0e0a9425d2569f7c0189f. The fix will be…

  • CVE-2022-36001MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `DrawBoundingBoxes` receives an input `boxes` that is not of dtype `float`, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-36000MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `mlir::tfg::ConvertGenericFunctionToFunctionDef` is given empty function attributes, it gives a null dereference. We have patched the issue in GitHub commit aed36912609fc07229b4d0a7b44f3f48efc00fd0. The fix will be…

  • CVE-2022-35999MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `Conv2DBackpropInput` receives empty `out_backprop` inputs (e.g. `[3, 1, 0, 1]`), the current CPU/GPU kernels `CHECK` fail (one with dnnl, the other with cudnn). This can be used to trigger a denial of service…

  • CVE-2022-35998MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. If `EmptyTensorList` receives an input `element_shape` with more than one dimension, it gives a `CHECK` fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35997MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. If `tf.sparse.cross` receives an input `separator` that is not a scalar, it gives a `CHECK` fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35996MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. If `Conv2D` is given empty `input` and the `filter` and `padding` sizes are valid, the output is all-zeros. This causes division-by-zero floating point exceptions that can be used to trigger a denial of service attack.…

  • CVE-2022-35995MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `AudioSummaryV2` receives an input `sample_rate` with more than one element, it gives a `CHECK` fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35994MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `CollectiveGather` receives an scalar input `input`, it gives a `CHECK` fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35993MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `SetSize` receives an input `set_shape` that is not a 1D tensor, it gives a `CHECK` fails that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35992MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `TensorListFromTensor` receives an `element_shape` of a rank greater than one, it gives a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-35991MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. When `TensorListScatter` and `TensorListScatterV2` receive an `element_shape` of a rank greater than one, they give a `CHECK` fail that can trigger a denial of service attack. We have patched the issue in GitHub commit…

  • CVE-2022-36026MedSep 16, 2022
    risk 0.31cvss 5.9epss 0.00

    TensorFlow is an open source platform for machine learning. If `QuantizeAndDequantizeV3` is given a nonscalar `num_bits` input tensor, it results in a `CHECK` fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit…

Page 9 of 22