Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-41895

Опубликовано: 18 нояб. 2022
Источник: debian

Описание

TensorFlow is an open source platform for machine learning. If `MirrorPadGrad` is given outsize input `paddings`, TensorFlow will give a heap OOB error. We have patched the issue in GitHub commit 717ca98d8c3bba348ff62281fdf38dcb5ea1ec92. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tensorflownot-affectedpackage

Связанные уязвимости

nvd логотип

CVE-2022-41895

CVSS3: 4.8
nvd
около 3 лет назад

TensorFlow is an open source platform for machine learning. If `MirrorPadGrad` is given outsize input `paddings`, TensorFlow will give a heap OOB error. We have patched the issue in GitHub commit 717ca98d8c3bba348ff62281fdf38dcb5ea1ec92. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.

msrc логотип

CVE-2022-41895

CVSS3: 7.5
msrc
около 3 лет назад

`MirrorPadGrad` heap out of bounds read in Tensorflow

github логотип

GHSA-gq2j-cr96-gvqx

CVSS3: 4.8
github
около 3 лет назад

`MirrorPadGrad` heap out of bounds read