CVE-2023-25671

Out-of-bounds Write in pypi/tensorflow-cpu

Identifiers

GHSA-j5w9-hmfh-4cr6, CVE-2023-25671

Package Slug

pypi/tensorflow-cpu

Vulnerability

Out-of-bounds Write

Description

TensorFlow is an open source platform for machine learning. There is out-of-bounds access due to mismatched integer type sizes. A fix is included in TensorFlow version 2.12.0 and version 2.11.1.

Affected Versions

All versions before 2.11.1

Solution

Upgrade to version 2.11.1 or above.

Last Modified

2023-03-27

source