'backport security patch for https://nvd.nist.gov/vuln/detail/CVE-2022-23593 and https://nvd.nist.gov/vuln/detail/CVE-2022-23592 to 2.7

Noticed the security patch for https://nvd.nist.gov/vuln/detail/CVE-2022-23593 and https://nvd.nist.gov/vuln/detail/CVE-2022-23592 is only available in 2.8.0, and the last sentence in the CVE is little confusing:

The fix will be included in TensorFlow 2.8.0. This is the only affected version.

Does it mean CVE-2022-23593 is not impact 2.7? If 2.7 is also relevant, do we have plan to backport the fix to 2.7?

Thanks

tensorflow


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Using TensorFlow in IDE on Windows

Using TensorFlow in IDE on Windows

Using TensorFlow in IDE on Windows

Using TensorFlow in IDE on Windows

Validation loss and loss stuck at 0

Create custom convolution layer and compare two keras layers

Tensorflow and Multiprocessing: Passing Sessions

Error: ValueError: The last dimension of the inputs to `Dense` should be defined. Found `None`

Sparse Categorical CrossEntropy shape problem with Keras

error: OpenCV(4.1.0) error: (-215:Assertion failed) !ssize.empty() in function 'cv::resize'

input_shape of Conv1D layer Keras

How to load data from a downloaded tar.gz file in tensorflow/keras?

How to test my trained Tensor Flow model

Anyway to work with Tensorflow in Mac with Apple Silicon (M1, M1 Pro, M1 Max) GPU?

Anaconda ImportError: /usr/lib64/libstdc++.so.6: version `GLIBCXX_3.4.21' not found