CVE-2021-33648

When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mindspore:mindspore:*:*:*:*:*:openeuler:*:*

History

21 Nov 2024, 06:09

Type Values Removed Values Added
References () https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md - Patch, Third Party Advisory () https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md - Patch, Third Party Advisory

Information

Published : 2022-06-27 17:15

Updated : 2024-11-21 06:09


NVD link : CVE-2021-33648

Mitre link : CVE-2021-33648

CVE.ORG link : CVE-2021-33648


JSON object : View

Products Affected

mindspore

  • mindspore
CWE
CWE-125

Out-of-bounds Read