Nixpkgs security tracker
Activity log
- Created suggestion
TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of TensorFlow. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of plugins. The application loads plugins from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of a target user. Was ZDI-CAN-25480.
References
-
ZDI-26-116 x_research-advisory
-
vendor-provided URL vendor-advisory
Affected products
- ==2.17.0
Matching in nixpkgs
pkgs.libtensorflow
Computation using data flow graphs for scalable machine learning
pkgs.tensorflow-lite
Open source deep learning framework for on-device inference
pkgs.python312Packages.tensorflow
Computation using data flow graphs for scalable machine learning
pkgs.python313Packages.tensorflow
Computation using data flow graphs for scalable machine learning
pkgs.haskellPackages.tensorflow-test
Some common functions for test suites
pkgs.haskellPackages.tensorflow-opgen
Code generation for TensorFlow operations
pkgs.haskellPackages.tensorflow-proto
TensorFlow protocol buffers
pkgs.python312Packages.tensorflow-bin
Computation using data flow graphs for scalable machine learning
pkgs.python313Packages.tensorflow-bin
Computation using data flow graphs for scalable machine learning
pkgs.haskellPackages.tensorflow-records
Encoder and decoder for the TensorFlow "TFRecords" format
pkgs.python312Packages.tensorflowWithCuda
Computation using data flow graphs for scalable machine learning
pkgs.python313Packages.tensorflowWithCuda
Computation using data flow graphs for scalable machine learning
pkgs.python312Packages.tensorflow-datasets
Library of datasets ready to use with TensorFlow
pkgs.python313Packages.tensorflow-datasets
Library of datasets ready to use with TensorFlow
pkgs.python312Packages.tensorflowWithoutCuda
Computation using data flow graphs for scalable machine learning
pkgs.python313Packages.tensorflowWithoutCuda
Computation using data flow graphs for scalable machine learning
pkgs.python312Packages.tensorflow-probability
Library for probabilistic reasoning and statistical analysis
pkgs.python313Packages.tensorflow-probability
Library for probabilistic reasoning and statistical analysis
pkgs.haskellPackages.tensorflow-records-conduit
Conduit wrappers for TensorFlow.Records.
pkgs.python312Packages.tensorflow-estimator-bin
TensorFlow Estimator is a high-level API that encapsulates model training, evaluation, prediction, and exporting
pkgs.python313Packages.tensorflow-estimator-bin
TensorFlow Estimator is a high-level API that encapsulates model training, evaluation, prediction, and exporting
pkgs.python314Packages.tensorflow-estimator-bin
TensorFlow Estimator is a high-level API that encapsulates model training, evaluation, prediction, and exporting
pkgs.pkgsRocm.python3Packages.tensorflow-datasets
Library of datasets ready to use with TensorFlow
pkgs.pkgsRocm.python3Packages.tensorflow-probability
Library for probabilistic reasoning and statistical analysis
pkgs.tests.pkg-config.defaultPkgConfigPackages.tensorflow
Test whether tensorflow-2.13.0 exposes pkg-config modules tensorflow
Package maintainers
-
@abbradar Nikolay Amiantov <ab@fmap.me>
-
@jyp Jean-Philippe Bernardy <jeanphilippe.bernardy@gmail.com>
-
@ndl Alexander Tsvyashchenko <ndl@endl.ch>
-
@GaetanLepage Gaetan Lepage <gaetan@glepage.com>
-
@cpcloud Phillip Cloud
-
@mschwaig Martin Schwaighofer <mschwaig+nixpkgs@eml.cc>