Cesar Crusius

2 exploits Active since Jul 2024
CVE-2023-33976 WRITEUP HIGH WRITEUP
TensorFlow < 2.13.0 - Denial of Service via array_ops.upper_bound Rank Check
TensorFlow is an end-to-end open source platform for machine learning. `array_ops.upper_bound` causes a segfault when not given a rank 2 tensor. The fix will be included in TensorFlow 2.13 and will also cherrypick this commit on TensorFlow 2.12.
CVSS 7.5
CVE-2023-33976 WRITEUP HIGH WRITEUP
TensorFlow < 2.13.0 - Denial of Service via array_ops.upper_bound Rank Check
TensorFlow is an end-to-end open source platform for machine learning. `array_ops.upper_bound` causes a segfault when not given a rank 2 tensor. The fix will be included in TensorFlow 2.13 and will also cherrypick this commit on TensorFlow 2.12.
CVSS 7.5