TensorFlow has segmentation fault in tfg-translate
CVE-2023-25671
7.5HIGH
What is CVE-2023-25671?
The vulnerability in TensorFlow arises from an out-of-bounds access issue resulting from mismatched integer type sizes. This flaw can lead to potential exploits by allowing unauthorized access to data beyond allocated memory bounds, thus compromising the stability and security of applications utilizing TensorFlow. A fix has been integrated into TensorFlow versions 2.12.0 and 2.11.1, addressing the identified vulnerabilities decisively. Users are encouraged to upgrade to these versions to safeguard their systems and maintain the integrity of machine learning workflows.
Affected Version(s)
tensorflow < 2.11.1