https://flyte.org logo
Join Slack
Powered by
<#25 Bump tensorflow from 2.8.0 to 2.9.3 in /proje...
# flyte-github
a
#25 Bump tensorflow from 2.8.0 to 2.9.3 in /projects/bravemusic Pull request opened by dependabot[bot] Bumps tensorflow from 2.8.0 to 2.9.3. Release notes Sourced from tensorflow's releases.
TensorFlow 2.9.3
Release 2.9.3
This release introduces several vulnerability fixes:
• Fixes an overflow in 
tf.keras.losses.poisson
(CVE-2022-41887)
• Fixes a heap OOB failure in 
ThreadUnsafeUnigramCandidateSampler
caused by missing validation (CVE-2022-41880)
• Fixes a segfault in 
ndarray_tensor_bridge
(CVE-2022-41884)
• Fixes an overflow in 
FusedResizeAndPadConv2D
(CVE-2022-41885)
• Fixes a overflow in 
ImageProjectiveTransformV2
(CVE-2022-41886)
• Fixes an FPE in 
tf.image.generate_bounding_box_proposals
on GPU (CVE-2022-41888)
• Fixes a segfault in 
pywrap_tfe_src
caused by invalid attributes (CVE-2022-41889)
• Fixes a 
CHECK
fail in 
BCast
(CVE-2022-41890)
• Fixes a segfault in 
TensorListConcat
(CVE-2022-41891)
• Fixes a 
CHECK_EQ
fail in 
TensorListResize
(CVE-2022-41893)
• Fixes an overflow in 
CONV_3D_TRANSPOSE
on TFLite (CVE-2022-41894)
• Fixes a heap OOB in 
MirrorPadGrad
(CVE-2022-41895)
• Fixes a crash in 
Mfcc
(CVE-2022-41896)
• Fixes a heap OOB in 
FractionalMaxPoolGrad
(CVE-2022-41897)
• Fixes a 
CHECK
fail in 
SparseFillEmptyRowsGrad
(CVE-2022-41898)
• Fixes a 
CHECK
fail in 
SdcaOptimizer
(CVE-2022-41899)
• Fixes a heap OOB in 
FractionalAvgPool
and `FractionalMaxPool`(CVE-2022-41900)
• Fixes a 
CHECK_EQ
in 
SparseMatrixNNZ
(CVE-2022-41901)
• Fixes an OOB write in grappler (CVE-2022-41902)
• Fixes a overflow in 
ResizeNearestNeighborGrad
(CVE-2022-41907)
• Fixes a 
CHECK
fail in 
PyFunc
(CVE-2022-41908)
• Fixes a segfault in 
CompositeTensorVariantToComponents
(CVE-2022-41909)
• Fixes a invalid char to bool conversion in printing a tensor (CVE-2022-41911)
• Fixes a heap overflow in 
QuantizeAndDequantizeV2
(CVE-2022-41910)
• Fixes a 
CHECK
failure in 
SobolSample
via missing validation (CVE-2022-35935)
• Fixes a 
CHECK
fail in 
TensorListScatter
and 
TensorListScatterV2
in eager mode (CVE-2022-35935)
TensorFlow 2.9.2
Release 2.9.2
This releases introduces several vulnerability fixes:
• Fixes a 
CHECK
failure in tf.reshape caused by overflows (CVE-2022-35934)
• Fixes a 
CHECK
failure in 
SobolSample
caused by missing validation (CVE-2022-35935)
• Fixes an OOB read in 
Gather_nd
op in TF Lite (CVE-2022-35937)
• Fixes a 
CHECK
failure in 
TensorListReserve
caused by missing validation (CVE-2022-35960)
• Fixes an OOB write in 
Scatter_nd
op in TF Lite (CVE-2022-35939)
• Fixes an integer overflow in 
RaggedRangeOp
(CVE-2022-35940)
• Fixes a 
CHECK
failure in 
AvgPoolOp
(CVE-2022-35941)
• Fixes a 
CHECK
failures in 
UnbatchGradOp
(CVE-2022-35952)
• Fixes a segfault TFLite converter on per-channel quantized transposed convolutions (CVE-2022-36027)
• Fixes a 
CHECK
failures in 
AvgPool3DGrad
(CVE-2022-35959)
• Fixes a 
CHECK
failures in 
FractionalAvgPoolGrad
(CVE-2022-35963)
• Fixes a segfault in 
BlockLSTMGradV2
(CVE-2022-35964)
• Fixes a segfault in 
LowerBound
and 
UpperBound
(CVE-2022-35965)
... (truncated) Changelog Sourced from tensorflow's changelog.
Release 2.9.3
This release introduces several vulnerability fixes:
• Fixes an overflow in 
tf.keras.losses.poisson
(CVE-2022-41887)
• Fixes a heap OOB failure in 
ThreadUnsafeUnigramCandidateSampler
caused by missing validation (CVE-2022-41880)
• Fixes a segfault in 
ndarray_tensor_bridge
(CVE-2022-41884)
• Fixes an overflow in 
FusedResizeAndPadConv2D
(CVE-2022-41885)
• Fixes a overflow in 
ImageProjectiveTransformV2
(CVE-2022-41886)
• Fixes an FPE in 
tf.image.generate_bounding_box_proposals
on GPU (CVE-2022-41888)
• Fixes a segfault in 
pywrap_tfe_src
caused by invalid attributes (CVE-2022-41889)
• Fixes a 
CHECK
fail in 
BCast
(CVE-2022-41890)
• Fixes a segfault in 
TensorListConcat
(CVE-2022-41891)
• Fixes a 
CHECK_EQ
fail in 
TensorListResize
(CVE-2022-41893)
• Fixes an overflow in 
CONV_3D_TRANSPOSE
on TFLite (CVE-2022-41894)
• Fixes a heap OOB in 
MirrorPadGrad
(CVE-2022-41895)
• Fixes a crash in 
Mfcc
(CVE-2022-41896)
• Fixes a heap OOB in 
FractionalMaxPoolGrad
(<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41897|CVE-2022-4189…
flyteorg/flytelab GitHub Actions: Push to GHCR GitHub Actions: build-and-deploy 3 other checks have passed 3/5 successful checks
Open in Slack
PreviousNext
Powered by