CVE-2021-41214 - log back

CVE-2021-41214 created at 06 Nov 2021 00:12:35
Severity
+ High
Remote
+ Local
Type
+ Arbitrary code execution
Description
+ In TensorFlow before version 2.6.1, the shape inference code for tf.ragged.cross has an undefined behavior due to binding a reference to nullptr.
References
+ https://github.com/tensorflow/tensorflow/security/advisories/GHSA-vwhq-49r4-gj9v
+ https://github.com/tensorflow/tensorflow/commit/fa6b7782fbb14aa08d767bc799c531f5e1fb3bb8
Notes