Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-41907

Опубликовано: 18 нояб. 2022
Источник: debian
EPSS Низкий

Описание

TensorFlow is an open source platform for machine learning. When `tf.raw_ops.ResizeNearestNeighborGrad` is given a large `size` input, it overflows. We have patched the issue in GitHub commit 00c821af032ba9e5f5fa3fe14690c8d28a657624. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tensorflownot-affectedpackage

EPSS

Процентиль: 32%
0.00126
Низкий

Связанные уязвимости

nvd логотип

CVE-2022-41907

CVSS3: 4.8
nvd
около 3 лет назад

TensorFlow is an open source platform for machine learning. When `tf.raw_ops.ResizeNearestNeighborGrad` is given a large `size` input, it overflows. We have patched the issue in GitHub commit 00c821af032ba9e5f5fa3fe14690c8d28a657624. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.

msrc логотип

CVE-2022-41907

CVSS3: 7.5
msrc
около 3 лет назад

Overflow in `ResizeNearestNeighborGrad` in Tensorflow

github логотип

GHSA-368v-7v32-52fx

CVSS3: 4.8
github
около 3 лет назад

Overflow in `ResizeNearestNeighborGrad`

EPSS

Процентиль: 32%
0.00126
Низкий