CVE-2018-10055

Invalid memory access and/or a heap buffer overflow in the TensorFlow XLA compiler in Google TensorFlow before 1.7.1 could cause a crash or read from other parts of process memory via a crafted configuration file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:40

Type Values Removed Values Added
References () https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-006.md - Patch, Third Party Advisory () https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-006.md - Patch, Third Party Advisory

Information

Published : 2019-04-24 17:29

Updated : 2024-11-21 03:40


NVD link : CVE-2018-10055

Mitre link : CVE-2018-10055

CVE.ORG link : CVE-2018-10055


JSON object : View

Products Affected

google

  • tensorflow
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer