What the vulnerability does

01Description

When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.

Key dates

02Disclosure timeline

June 27, 2022 CVE published
August 3, 2024 Record updated