Segmentation Fault in TensorFlow 2.12 and 2.13
CVE-2023-33976
7.5HIGH
What is CVE-2023-33976?
A fault in TensorFlow's array_ops.upper_bound function may lead to a segmentation fault when the input provided is not a rank 2 tensor. Affected versions include TensorFlow 2.12 and earlier, with remediation measures introduced in TensorFlow 2.13. Users are advised to upgrade to the latest version to prevent potential crashes in applications leveraging TensorFlow for machine learning tasks.
Affected Version(s)
tensorflow < 2.13.0