Upload README.md with huggingface_hub
Browse files
README.md
ADDED
|
@@ -0,0 +1,8 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
# VULN-012: Heap OOB Read in TensorRT ONNX Parser (convertInt32Data)
|
| 2 |
+
|
| 3 |
+
CWE-125. convertInt32Data<T>() reads volume(shape) elements from int32_data without bounds check.
|
| 4 |
+
Undersized int32_data causes heap OOB read -> ACCESS_VIOLATION.
|
| 5 |
+
|
| 6 |
+
Affected types: FLOAT16, BFLOAT16, INT8, BOOL. Tested on TensorRT 10.15.1.29.
|
| 7 |
+
|
| 8 |
+
Run: `python reproduce.py` (each model is ~77 bytes, crashes during parse).
|