TensorFlow has Null Pointer Error in LookupTableImportV2
CVE-2023-25672
7.5HIGH
What is CVE-2023-25672?
An issue has been identified in TensorFlow's tf.raw_ops.LookupTableImportV2
function where it fails to process scalar values in the values
parameter, resulting in a Null Pointer Exception (NPE). This vulnerability impacts the stability of machine learning applications using TensorFlow. A resolution is available in TensorFlow versions 2.12.0 and 2.11.1, addressing the underlying problem effectively.
Affected Version(s)
tensorflow < 2.11.1