CVE-2021-33650

Summary

When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers.

Affected Software

VendorProductVersion RangeStatus
n/aopenEuler:mindspore>= 1.2.0, < 1.3.0affected

Weaknesses

  • CWE-125: CWE-125 Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

References