CVE-2021-29549 log

Severity Low
Remote No
Type Denial of service
A security issue has been found in TensorFlow before version 2.4.2. An attacker can cause a runtime division by zero error and denial of service in `tf.raw_ops.QuantizedBatchNormWithGlobalNormalization`. This is because the implementation( computes a modulo operation without validating that the divisor is not zero. Since `vector_num_elements` is determined based on input shapes(, a user can trigger scenarios where this quantity is 0.
Group Package Affected Fixed Severity Status Ticket
AVG-1962 tensorflow 2.4.1-10 2.5.0-1 Critical Fixed