[Git][security-tracker-team/security-tracker][master] more tensorflow updates
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Sep 2 11:39:54 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
17b99858 by Moritz Muehlenhoff at 2025-09-02T12:39:30+02:00
more tensorflow updates
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -265723,7 +265723,7 @@ CVE-2022-41881 (Netty project is an event-driven asynchronous network applicatio
NOTE: https://github.com/netty/netty/security/advisories/GHSA-fx2c-96vj-985v
NOTE: Fixed by https://github.com/netty/netty/commit/cd91cf3c99123bd1e53fd6a1de0e3d1922f05bb2 (netty-4.1.86.Final)
CVE-2022-41880 (TensorFlow is an open source platform for machine learning. When the ` ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-41879 (Parse Server is an open source backend that can be deployed to any inf ...)
NOT-FOR-US: Node parse-server
CVE-2022-41878 (Parse Server is an open source backend that can be deployed to any inf ...)
@@ -281689,9 +281689,9 @@ CVE-2022-36029 (Greenlight is an end-user interface for BigBlueButton servers. V
CVE-2022-36028 (Greenlight is an end-user interface for BigBlueButton servers. Version ...)
NOT-FOR-US: Greenlight (end-user interface for BigBlueButton servers)
CVE-2022-36027 (TensorFlow is an open source platform for machine learning. When conve ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36026 (TensorFlow is an open source platform for machine learning. If `Quanti ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36025 (Besu is a Java-based Ethereum client. In versions newer than 22.1.3 an ...)
NOT-FOR-US: Hyperledger Besu
CVE-2022-36024 (py-cord is a an API wrapper for Discord written in Python. Bots creati ...)
@@ -281709,23 +281709,23 @@ CVE-2022-36021 (Redis is an in-memory database that persists on disk. Authentica
CVE-2022-36020 (The typo3/html-sanitizer package is an HTML sanitizer, written in PHP, ...)
NOT-FOR-US: typo3/html-sanitizer
CVE-2022-36019 (TensorFlow is an open source platform for machine learning. If `FakeQu ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36018 (TensorFlow is an open source platform for machine learning. If `Ragged ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36017 (TensorFlow is an open source platform for machine learning. If `Requan ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36016 (TensorFlow is an open source platform for machine learning. When `tens ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36015 (TensorFlow is an open source platform for machine learning. When `Rang ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36014 (TensorFlow is an open source platform for machine learning. When `mlir ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36013 (TensorFlow is an open source platform for machine learning. When `mlir ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36012 (TensorFlow is an open source platform for machine learning. When `mlir ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36011 (TensorFlow is an open source platform for machine learning. When `mlir ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36010 (This library allows strings to be parsed as functions and stored as a ...)
NOT-FOR-US: oxyno-zeta
CVE-2022-36009 (gomatrixserverlib is a Go library for matrix protocol federation. Dend ...)
@@ -281737,55 +281737,55 @@ CVE-2022-36007 (Venice is a Clojure inspired sandboxed Lisp dialect with excelle
CVE-2022-36006 (Arvados is an open source platform for managing, processing, and shari ...)
NOT-FOR-US: Arvados
CVE-2022-36005 (TensorFlow is an open source platform for machine learning. When `tf.q ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36004 (TensorFlow is an open source platform for machine learning. When `tf.r ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36003 (TensorFlow is an open source platform for machine learning. When `Rand ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36002 (TensorFlow is an open source platform for machine learning. When `Unba ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36001 (TensorFlow is an open source platform for machine learning. When `Draw ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-36000 (TensorFlow is an open source platform for machine learning. When `mlir ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35999 (TensorFlow is an open source platform for machine learning. When `Conv ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35998 (TensorFlow is an open source platform for machine learning. If `EmptyT ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35997 (TensorFlow is an open source platform for machine learning. If `tf.spa ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35996 (TensorFlow is an open source platform for machine learning. If `Conv2D ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35995 (TensorFlow is an open source platform for machine learning. When `Audi ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35994 (TensorFlow is an open source platform for machine learning. When `Coll ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35993 (TensorFlow is an open source platform for machine learning. When `SetS ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35992 (TensorFlow is an open source platform for machine learning. When `Tens ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35991 (TensorFlow is an open source platform for machine learning. When `Tens ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35990 (TensorFlow is an open source platform for machine learning. When `tf.q ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35989 (TensorFlow is an open source platform for machine learning. When `MaxP ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35988 (TensorFlow is an open source platform for machine learning. When `tf.l ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35987 (TensorFlow is an open source platform for machine learning. `DenseBinc ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35986 (TensorFlow is an open source platform for machine learning. If `Ragged ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35985 (TensorFlow is an open source platform for machine learning. If `LRNGra ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35984 (TensorFlow is an open source platform for machine learning. `Parameter ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35983 (TensorFlow is an open source platform for machine learning. If `Save` ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35982 (TensorFlow is an open source platform for machine learning. If `Sparse ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35981 (TensorFlow is an open source platform for machine learning. `Fractiona ...)
- - tensorflow <itp> (bug #804612)
+ - tensorflow <not-affected> (Fixed before initial upload to the archive)
CVE-2022-35980 (OpenSearch Security is a plugin for OpenSearch that offers encryption, ...)
NOT-FOR-US: OpenSearch Security plugin for OpenSearch
CVE-2022-35979 (TensorFlow is an open source platform for machine learning. If `Quanti ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/17b998583779b57ed147d39d54cfcebb759dd12f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/17b998583779b57ed147d39d54cfcebb759dd12f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250902/3c2be333/attachment.htm>
More information about the debian-security-tracker-commits
mailing list