CVE-2023-25672 – TensorFlow has Null Pointer Error in LookupTableImportV2
https://notcve.org/view.php?id=CVE-2023-25672
TensorFlow is an open source platform for machine learning. The function `tf.raw_ops.LookupTableImportV2` cannot handle scalars in the `values` parameter and gives an NPE. A fix is included in TensorFlow version 2.12.0 and version 2.11.1. • https://github.com/tensorflow/tensorflow/commit/980b22536abcbbe1b4a5642fc940af33d8c19b69 https://github.com/tensorflow/tensorflow/security/advisories/GHSA-94mm-g2mv-8p7r • CWE-476: NULL Pointer Dereference •
CVE-2023-25673 – TensorFlow has Floating Point Exception in TensorListSplit with XLA
https://notcve.org/view.php?id=CVE-2023-25673
TensorFlow is an open source platform for machine learning. Versions prior to 2.12.0 and 2.11.1 have a Floating Point Exception in TensorListSplit with XLA. A fix is included in TensorFlow version 2.12.0 and version 2.11.1. • https://github.com/tensorflow/tensorflow/commit/728113a3be690facad6ce436660a0bc1858017fa https://github.com/tensorflow/tensorflow/security/advisories/GHSA-647v-r7qq-24fh • CWE-697: Incorrect Comparison •
CVE-2023-25674 – TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
https://notcve.org/view.php?id=CVE-2023-25674
TensorFlow is an open source machine learning platform. Versions prior to 2.12.0 and 2.11.1 have a null pointer error in RandomShuffle with XLA enabled. A fix is included in TensorFlow 2.12.0 and 2.11.1. • https://github.com/tensorflow/tensorflow/commit/728113a3be690facad6ce436660a0bc1858017fa https://github.com/tensorflow/tensorflow/security/advisories/GHSA-gf97-q72m-7579 • CWE-476: NULL Pointer Dereference •
CVE-2023-25675 – TensorFlow has Segfault in Bincount with XLA
https://notcve.org/view.php?id=CVE-2023-25675
TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, `tf.raw_ops.Bincount` segfaults when given a parameter `weights` that is neither the same shape as parameter `arr` nor a length-0 tensor. A fix is included in TensorFlow 2.12.0 and 2.11.1. • https://github.com/tensorflow/tensorflow/commit/8ae76cf085f4be26295d2ecf2081e759e04b8acf https://github.com/tensorflow/tensorflow/security/advisories/GHSA-7x4v-9gxg-9hwj • CWE-697: Incorrect Comparison •
CVE-2023-25676 – TensorFlow has null dereference on ParallelConcat with XLA
https://notcve.org/view.php?id=CVE-2023-25676
TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, `tf.raw_ops.ParallelConcat` segfaults with a nullptr dereference when given a parameter `shape` with rank that is not greater than zero. A fix is available in TensorFlow 2.12.0 and 2.11.1. • https://github.com/tensorflow/tensorflow/commit/da66bc6d5ff466aee084f9e7397980a24890cd15 https://github.com/tensorflow/tensorflow/security/advisories/GHSA-6wfh-89q8-44jq • CWE-476: NULL Pointer Dereference •