From 5d7812734b10d548c8676be31b441c2c9e66b0ab Mon Sep 17 00:00:00 2001 From: fangzhou12 Date: Thu, 4 Aug 2022 10:40:46 +0800 Subject: [PATCH] [MindSpore] cve bugfix --- security/cve-report_en.md | 16 ++++++++-------- security/cve-report_zh_cn.md | 14 +++++++------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/security/cve-report_en.md b/security/cve-report_en.md index bd856eb..d21e3bf 100644 --- a/security/cve-report_en.md +++ b/security/cve-report_en.md @@ -41,14 +41,14 @@ The VMT consists of vulnerability management experts in the community. The team | Advisory Number | Type | Versions affected | Reported by | Additional Information | | --- | ---- | --- | --- | --- | -| [MSSA-2021-008](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-008_en.md) | Heap buffer overflow in MindSpore Lite Tile operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-007](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md) | Heap buffer overflow in MindSpore Lite infer shape operations | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-006](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006_en.md) | Heap buffer overflow in MindSpore Lite Transpose operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-005](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-005_en.md) | Heap buffer overflow in MindSpore Lite SparseToDense operator | >= 1.2.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-004](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004_en.md) | Division by 0 in MindSpore Lite DepthwiseConv2D parse operations | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-003](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-003_en.md) | Division by 0 in MindSpore Lite Reduce operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-002](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-002_en.md) | Division by 0 in MindSpore Lite SpaceToBatch operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | -| [MSSA-2021-001](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-001_en.md) | Division by 0 in MindSpore Lite Split operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | | +| [MSSA-2021-008](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-008_en.md) | Heap buffer overflow in MindSpore Lite Tile operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33647 | | +| [MSSA-2021-007](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007_en.md) | Heap buffer overflow in MindSpore Lite infer shape operations | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33648 | | +| [MSSA-2021-006](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006_en.md) | Heap buffer overflow in MindSpore Lite Transpose operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33649 | | +| [MSSA-2021-005](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-005_en.md) | Heap buffer overflow in MindSpore Lite SparseToDense operator | >= 1.2.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33650 | | +| [MSSA-2021-004](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004_en.md) | Division by 0 in MindSpore Lite DepthwiseConv2D parse operations | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33651 | | +| [MSSA-2021-003](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-003_en.md) | Division by 0 in MindSpore Lite Reduce operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33652 | | +| [MSSA-2021-002](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-002_en.md) | Division by 0 in MindSpore Lite SpaceToBatch operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33653 | | +| [MSSA-2021-001](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-001_en.md) | Division by 0 in MindSpore Lite Split operator | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33654 | | ## MindSpore Security Note (SN) diff --git a/security/cve-report_zh_cn.md b/security/cve-report_zh_cn.md index 40951cc..0b4c2b2 100644 --- a/security/cve-report_zh_cn.md +++ b/security/cve-report_zh_cn.md @@ -42,13 +42,13 @@ MindSpore作为一个同时支持端/边缘/云场景的训练推理框架,在 | 公告 | 类型 | 受影响版本 | 上报人 | CVE ID | 附加信息 | | --- | ---- | --- | --- | --- | --- | | [MSSA-2021-008](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-008.md) | MindSpore Lite的Tile算子中数组越界访问异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33647 | | -| [MSSA-2021-007](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007.md) | MindSpore Lite的推导shape操作中数组越界访问异常 | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33678 | | -| [MSSA-2021-006](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006.md) | MindSpore Lite的Transpose算子中数组越界访问异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33679 | | -| [MSSA-2021-005](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-005.md) | MindSpore Lite的SparseToDense算子中数组越界访问异常 | >= 1.2.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33680 | | -| [MSSA-2021-004](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004.md) | MindSpore Lite的DepthwiseConv2D算子parser操作中除零异常 | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33681 | | -| [MSSA-2021-003](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-003.md) | MindSpore Lite的Reduce算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33682 | | -| [MSSA-2021-002](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-002.md) | MindSpore Lite的SpaceToBatch算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33683 | | -| [MSSA-2021-001](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-001.md) | MindSpore Lite的Split算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33684 | | +| [MSSA-2021-007](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-007.md) | MindSpore Lite的推导shape操作中数组越界访问异常 | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33648 | | +| [MSSA-2021-006](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006.md) | MindSpore Lite的Transpose算子中数组越界访问异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33649 | | +| [MSSA-2021-005](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-005.md) | MindSpore Lite的SparseToDense算子中数组越界访问异常 | >= 1.2.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33650 | | +| [MSSA-2021-004](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-004.md) | MindSpore Lite的DepthwiseConv2D算子parser操作中除零异常 | >= 1.1.0, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33651 | | +| [MSSA-2021-003](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-003.md) | MindSpore Lite的Reduce算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33652 | | +| [MSSA-2021-002](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-002.md) | MindSpore Lite的SpaceToBatch算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33653 | | +| [MSSA-2021-001](https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-001.md) | MindSpore Lite的Split算子中除零异常 | >= 0.7.0-beta, < 1.3.0 | Wang Xuan(@May) of Qihoo 360 AIVul Team | CVE-2021-33654 | | ## MindSpore安全说明(SN)