CVE-2021-41220

Use After Free in pypi/tensorflow

Identifiers

CVE-2021-41220, GHSA-gpfh-jvf9-7wg5

Package Slug

pypi/tensorflow

Vulnerability

Use After Free

Description

TensorFlow is an open source platform for machine learning.This occurs due to the asynchronous computation and the fact that objects that have been std::move() from are still accessed.

Affected Versions

All versions starting from 2.6.0 before 2.6.1, version 2.7.0

Solution

Upgrade to version 2.6.1 or above.

Last Modified

2021-11-11

source