Google TensorFlow 2.10.0
Approved changes feed: RSS · Atom
cpe:2.3:a:google:tensorflow:2.10.0:-:*:*:*:*:*:*
part: a version: 2.10.0 update: -
| Vendor | Google (f181d1eb-7269-5bae-b76e-e66ceb214562) |
|---|---|
| Product | Tensorflow (b00eb799-7f6b-5a1c-af79-6e563231bc87) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:docker/tensorflow/tensorflow |
purl2cpe | 2026-06-01 10:16:37.693876 |
pkg:github/tensorflow/tensorflow |
purl2cpe | 2026-06-01 10:16:37.693877 |
pkg:pypi/tensorflow |
purl2cpe | 2026-06-01 10:16:37.693878 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-41910 |
vulnerable | 2026-06-03 14:48:11.800976 |
Heap out of bounds read in `QuantizeAndDequantizeV2` in Tensorflow
MEDIUM (4.8)
TensorFlow is an open source platform for machine learning. The function MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. We have patched the issue in GitHub commit a65411a1d69edfb16b25907ffb8f73556ce36bb7. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.8.4, 2.9.3, and 2.10.1.
Published: 2022-12-06T00:00:00.000Z
Updated: 2025-04-23T16:32:26.257Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-41902 |
vulnerable | 2026-06-03 14:48:11.780769 |
Out of bounds write in grappler in Tensorflow
HIGH (7.1)
TensorFlow is an open source platform for machine learning. The function MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. We have patched the issue in GitHub commit a65411a1d69edfb16b25907ffb8f73556ce36bb7. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.8.4, 2.9.3, and 2.10.1.
Published: 2022-12-06T00:00:00.000Z
Updated: 2025-04-23T16:32:33.413Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-41883 |
vulnerable | 2026-06-03 14:48:11.765011 |
Out of bounds segmentation fault due to unequal op inputs in Tensorflow
MEDIUM (6.8)
TensorFlow is an open source platform for machine learning. When ops that have specified input sizes receive a differing number of inputs, the executor will crash. We have patched the issue in GitHub commit f5381e0e10b5a61344109c1b7c174c68110f7629. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.
Published: 2022-11-18T00:00:00.000Z
Updated: 2025-04-22T16:07:05.864Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.