You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: RELEASE.md
+11Lines changed: 11 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -1,3 +1,14 @@
1
+
# Release 1.7.1
2
+
3
+
## Bug Fixes and Other Changes
4
+
* Fixes the following potential security vulnerabilities:
5
+
* The TensorFlow Lite TOCO compiler did not perform correct boundary checks when reading from some fields within TFLite files.
6
+
* The block size in meta file could contain a large int64 value which causes an integer overflow upon addition. Subsequent code using n as index may cause an out-of-bounds read.
7
+
* TensorFlow checkpoint meta file uses Google's [https://github.com/google/snappy](snappy) compression/decompression library. There is a memcpy-param-overlap issue in the version of snappy currently used by TensorFlow.
8
+
* A maliciously crafted configuration file passed into the TensorFlow XLA compiler could cause an invalid memory access and/or a heap buffer overflow.
0 commit comments