Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-23572: Properly handle the case where `SpecializeType()` returns an error `S… · tensorflow/tensorflow@cb16478

Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, TensorFlow can fail to specialize a type during shape inference. This case is covered by the DCHECK function however, DCHECK is a no-op in production builds and an assertion failure in debug builds. In the first case execution proceeds to the ValueOrDie line. This results in an assertion failure as ret contains an error Status, not a value. In the second case we also get a crash due to the assertion failure. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.

CVE
Open in Source
#vulnerability#ios#mac#git#perl#auth

Skip to content

Sign up

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

Explore

*   All features
*   Documentation
*   GitHub Skills
*   Blog

  • For

    • Enterprise
    • Teams
    • Startups
    • Education

    By Solution

    • CI/CD & Automation
    • DevOps
    • DevSecOps

    Case Studies

    • Customer Stories
    • Resources

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
    

Repositories

*   Topics
*   Trending
*   Collections
  • Pricing

Search code, repositories, users, issues, pull requests…

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches****Use saved searches to filter your results more quickly

Sign in

Sign up

tensorflow / tensorflow Public

  • Notifications
  • Fork 88.7k
  • Star 176k
  • Code
  • Issues 1.9k
  • Pull requests 203
  • Actions
  • Projects 2
  • Security
  • Insights

More

Commit

Permalink

Browse files

Browse the repository at this point in the history

Properly handle the case where SpecializeType() returns an error `S…

…tatus`.

If the error case in `SpecializeType()` is reached, then we would get a crash when trying to access the value of an errorenous `StatusOr` object

PiperOrigin-RevId: 408380069 Change-Id: If3c3fc876dcf9384d5ec7a4985adc68c23ea7318

  • Loading branch information

mihaimaruseac authored and tensorflower-gardener committed

Nov 8, 2021

1 parent c2b31ff commit cb16478

Showing 1 changed file with 4 additions and 1 deletion.

5 changes: 4 additions & 1 deletion tensorflow/core/framework/shape_inference.cc

Show comments View file

Expand Up

@@ -170,7 +170,10 @@ void InferenceContext::PreInputInit(

const std::vector<ShapeHandle>& input_tensors_as_shapes) {

// TODO(mdan): This is also done at graph construction. Run only here instead?

const auto ret = full_type::SpecializeType(attrs_, op_def);

DCHECK(ret.status().ok()) << "while instantiating types: " << ret.status();

if (!ret.status().ok()) {

construction_status_ = ret.status();

return;

}

ret_types_ = ret.ValueOrDie();

input_tensors_ = input_tensors;

Expand Down

0 comments on commit cb16478

Please sign in to comment.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE