[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CVE-2021-41226 log

Source
Severity High
Remote No
Type Arbitrary code execution
Description
In TensorFlow before version 2.6.1, the implementation of SparseBinCount is vulnerable to a heap OOB access. This is because of missing validation between the elements of the values argument and the shape of the sparse output.
Group Package Affected Fixed Severity Status Ticket
AVG-2529 tensorflow 2.6.0-6 2.6.1-1 High Fixed
References
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-374m-jm66-3vj8
https://github.com/tensorflow/tensorflow/commit/f410212e373eb2aec4c9e60bf3702eba99a38aba