CVE-2021-33649

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-33649

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33649.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-33649

Published

2022-06-27T17:15:08.733Z

Modified

2026-04-10T05:02:41.460984Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the inputshape, it will access data outside of bounds of inputshape which allocated from heap buffers.

References

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006_en.md

Affected packages

Git / github.com/mindspore-ai/mindspore

Affected ranges

Type

GIT

Repo

https://github.com/mindspore-ai/mindspore

Events

Introduced

685a77c7c3c728f24c630984387147d61434fbd3

Fixed

cfbb0d0dfad1fa4e6f6b8310f6e2cf79db639213

Introduced

Last affected

29fabd1324cee59794583ddbb94c888f5ba5d205

Database specific

{
    "versions": [
        {
            "introduced": "1.0.0"
        },
        {
            "fixed": "1.3.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.7.0-beta"
        }
    ]
}

Affected versions

v0.*

v0.7.0-beta

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-33649.json"