TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, when `ctx->step_containter()` is a null ptr, the Lookup function will be executed with a null pointer. A fix is included in TensorFlow 2.12.0 and 2.11.1.
References
Link | Resource |
---|---|
https://github.com/tensorflow/tensorflow/commit/239139d2ae6a81ae9ba499ad78b56d9b2931538a | Patch |
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-64jg-wjww-7c5w | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2023-03-25 00:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-25663
Mitre link : CVE-2023-25663
CVE.ORG link : CVE-2023-25663
JSON object : View
Products Affected
- tensorflow
CWE
CWE-476
NULL Pointer Dereference