Vulnerability Database
289,697
Total vulnerabilities in the database
CVE-2022-29213
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the tf.compat.v1.signal.rfft2d and tf.compat.v1.signal.rfft3d lack input validation and under certain condition can result in crashes (due to CHECK-failures). Versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4 contain a patch for this issue.
| Software | From | Fixed in |
|---|---|---|
| google / tensorflow | 2.7.0-rc1 | 2.7.0-rc1.x |
| google / tensorflow | 2.7.0-rc0 | 2.7.0-rc0.x |
| google / tensorflow | 2.7.0 | 2.7.2 |
| google / tensorflow | - | 2.6.4 |
| google / tensorflow | 2.8.0-rc0 | 2.8.0-rc0.x |
| google / tensorflow | 2.8.0-rc1 | 2.8.0-rc1.x |
| google / tensorflow | 2.9.0-rc1 | 2.9.0-rc1.x |
| google / tensorflow | 2.9.0-rc0 | 2.9.0-rc0.x |
| google / tensorflow | 2.8.0 | 2.8.0.x |
tensorflow
|
- | 2.6.4 |
|
tensorflow
|
2.7.0 | 2.7.2 |
|
tensorflow
|
2.8.0 | 2.8.1 |
|
tensorflow-cpu
|
- | 2.6.4 |
|
tensorflow-cpu
|
2.7.0 | 2.7.2 |
|
tensorflow-cpu
|
2.8.0 | 2.8.1 |
|
tensorflow-gpu
|
- | 2.6.4 |
|
tensorflow-gpu
|
2.7.0 | 2.7.2 |
|
tensorflow-gpu
|
2.8.0 | 2.8.1 |
- https://github.com/tensorflow/tensorflow/commit/0a8a781e597b18ead006d19b7d23d0a369e9ad73
- https://github.com/tensorflow/tensorflow/issues/55263
- https://github.com/tensorflow/tensorflow/pull/55274
- https://github.com/tensorflow/tensorflow/releases/tag/v2.6.4
- https://github.com/tensorflow/tensorflow/releases/tag/v2.7.2
- https://github.com/tensorflow/tensorflow/releases/tag/v2.8.1
- https://github.com/tensorflow/tensorflow/releases/tag/v2.9.0
- https://github.com/tensorflow/tensorflow/security/advisories/GHSA-5889-7v45-q28m