| Severity |
|
| Remote |
|
| Type |
| + |
Arbitrary code execution |
|
| Description |
| + |
In TensorFlow before version 2.6.1, the shape inference function for Transpose is vulnerable to a heap buffer overflow. This occurs whenever perm contains negative elements. The shape inference function does not validate that the indices in perm are all valid. |
|
| References |
| + |
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-3ff2-r28g-w7h9 |
| + |
https://github.com/tensorflow/tensorflow/commit/c79ba87153ee343401dbe9d1954d7f79e521eb14 |
|
| Notes |
|