CVE-2023-27579

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.12 TensorFlow version 2.11.1 and earlier

Description Constructing a tflite model with a parameter filter input channel of less than 1 gives a Floating Point Exception (FPE). This issue affects TensorFlow, an end-to-end open source platform for machine learning.

Recommendations For versions prior to 2.12, update to version 2.12 or later to resolve the issue. For version 2.11.1 and earlier, wait for the fix commit to be cherry-picked or update to a newer version when available. As a temporary workaround, consider avoiding the construction of tflite models with a filter input channel parameter of less than 1 until a patch is available.