diff options
author | Mihai Maruseac <mihaimaruseac@google.com> | 2021-01-04 12:18:42 -0800 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-01-04 12:18:42 -0800 |
commit | 3db52be7be81a87c623cdeb7f03d3767521c5246 (patch) | |
tree | 2fab59ec39748c69139aa1f2057109d44462d329 | |
parent | da8db173bb2361b91756208dfb6eade9ab3a75a4 (diff) | |
parent | a788dc55a4b8cff06ccb80d5aafc3a27da3b4dec (diff) | |
download | tensorflow-3db52be7be81a87c623cdeb7f03d3767521c5246.tar.gz |
Merge pull request #45763 from tensorflow-jenkins/relnotes-1.15.5-6556upstream-r1.15
Update release notes for TensorFlow 1.15.5
-rw-r--r-- | RELEASE.md | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/RELEASE.md b/RELEASE.md index 02201c3bac0..4228808ecd0 100644 --- a/RELEASE.md +++ b/RELEASE.md @@ -1,3 +1,31 @@ +# Release 1.15.5 + +Note that this is the last patch release for the TensorFlow 1.x series. + +## Bug Fixes and Other Changes +* Fixes an access to unitialized memory in Eigen code + ([CVE-2020-26266](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26266)) +* Fixes a security vulnerability caused by lack of validation in + `tf.raw_ops.DataFormatVecPermute` and `tf.raw_ops.DataFormatDimMap` + ([CVE-2020-26267](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26267)) +* Fixes a vulnerability caused by attempting to write to immutable memory region in + `tf.raw_ops.ImmutableConst` + ([CVE-2020-26268](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26268) +* Fixes a `CHECK`-fail in LSTM with zero-length input + ([CVE-2020-26270](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26270)) +* Fixes a security vulnerability caused by accessing heap data outside of bounds + when loading a specially crafted `SavedModel` + ([CVE-2020-26271](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26271)) +* Updates `libjpeg-turbo` to `2.0.5` to handle + [CVE-2020-13790](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13790). +* Updates `junit` to `4.13.1` to handle + [CVE-2020-15250](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15250). +* Updates `PCRE` to `8.44` to handle + [CVE-2019-20838](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20838) + and + [CVE-2020-14155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14155). +* Updates `sqlite3` to `3.44.0` to keep in sync with master branch. + # Release 1.15.4 ## Bug Fixes and Other Changes |