[Git][security-tracker-team/security-tracker][master] tensorflow updates

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Sep 2 11:31:14 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5d76183 by Moritz Muehlenhoff at 2025-09-02T12:31:03+02:00
tensorflow updates

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -265638,15 +265638,15 @@ CVE-2022-41912 (The crewjam/saml go library prior to version 0.4.9 is vulnerable
 	NOTE: https://github.com/crewjam/saml/commit/aee3fb1edeeaf1088fcb458727e0fd863d277f8b (v0.4.9)
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=2368
 CVE-2022-41911 (TensorFlow is an open source platform for machine learning. When print ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41910 (TensorFlow is an open source platform for machine learning. The functi ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41909 (TensorFlow is an open source platform for machine learning. An input ` ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41908 (TensorFlow is an open source platform for machine learning. An input ` ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41907 (TensorFlow is an open source platform for machine learning. When `tf.r ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41906 (OpenSearch Notifications is a notifications plugin for OpenSearch that ...)
 	NOT-FOR-US: OpenSearch plugin
 CVE-2022-41905 (WsgiDAV is a generic and extendable WebDAV server based on WSGI. Imple ...)
@@ -265671,45 +265671,45 @@ CVE-2022-41903 (Git is distributed revision control system. `git log` can displa
 	NOTE: https://github.com/git/git/commit/304a50adff6480ede46b68f7545baab542cbfb46
 	NOTE: https://github.com/git/git/files/10430260/X41-OSTIF-Gitlab-Git-Security-Audit-20230117-public.pdf
 CVE-2022-41902 (TensorFlow is an open source platform for machine learning. The functi ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41901 (TensorFlow is an open source platform for machine learning. An input ` ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41900 (TensorFlow is an open source platform for machine learning. The securi ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41899 (TensorFlow is an open source platform for machine learning. Inputs `de ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41898 (TensorFlow is an open source platform for machine learning. If `Sparse ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41897 (TensorFlow is an open source platform for machine learning. If `Fracti ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41896 (TensorFlow is an open source platform for machine learning. If `Thread ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41895 (TensorFlow is an open source platform for machine learning. If `Mirror ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41894 (TensorFlow is an open source platform for machine learning. The refere ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41893 (TensorFlow is an open source platform for machine learning. If `tf.raw ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41892 (Arches is a web platform for creating, managing, & visualizing geospat ...)
 	NOT-FOR-US: Arches
 CVE-2022-41891 (TensorFlow is an open source platform for machine learning. If `tf.raw ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41890 (TensorFlow is an open source platform for machine learning. If `BCast: ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41889 (TensorFlow is an open source platform for machine learning. If a list  ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41888 (TensorFlow is an open source platform for machine learning. When runni ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41887 (TensorFlow is an open source platform for machine learning. `tf.keras. ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41886 (TensorFlow is an open source platform for machine learning. When `tf.r ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41885 (TensorFlow is an open source platform for machine learning. When `tf.r ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41884 (TensorFlow is an open source platform for machine learning. If a numpy ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41883 (TensorFlow is an open source platform for machine learning. When ops t ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
 CVE-2022-41882 (The Nextcloud Desktop Client is a tool to synchronize files from Nextc ...)
 	- nextcloud-desktop 3.6.1-1
 	[bullseye] - nextcloud-desktop <not-affected> (vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d7618391a4921f08460172255e29a2762fcf52

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d7618391a4921f08460172255e29a2762fcf52
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250902/9d775296/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list