CVE-2021-29613 - log back

CVE-2021-29613 edited at 14 May 2021 21:57:17
Type
- Insufficient validation
+ Information disclosure
CVE-2021-29613 edited at 14 May 2021 21:34:19
Severity
- Low
+ High
Type
- Unknown
+ Insufficient validation
CVE-2021-29613 edited at 14 May 2021 21:32:27
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Description
+ A security issue has been found in TensorFlow before version 2.4.2. Incomplete validation in `tf.raw_ops.CTCLoss` allows an attacker to trigger an OOB read from heap.
References
+ https://github.com/tensorflow/tensorflow/security/advisories/GHSA-vvg4-vgrv-xfr7
+ https://github.com/tensorflow/tensorflow/commit/4504a081af71514bb1828048363e6540f797005b
+ https://github.com/tensorflow/tensorflow/commit/14607c0707040d775e06b6817325640cb4b5864c
CVE-2021-29613 created at 14 May 2021 20:37:16
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes