treforbenbow
/

tensorrt-oob-read-double-data

Model card Files Files and versions

tensorrt-oob-read-double-data / README.md

treforbenbow's picture

Upload README.md with huggingface_hub

15fe861 verified about 2 months ago

|

history blame contribute delete

435 Bytes

VULN-013: DOUBLE OOB Read in TensorRT ONNX Parser

CWE-125: Out-of-bounds Read in DOUBLE weight handling.

Two trigger paths:

raw_data (primary): DOUBLE [10000] with 8B raw_data. 10/10 crash rate.
double_data: DOUBLE [5000] with 1 element. 5/5 crash rate.

DOUBLE-specific: FLOAT/INT32/INT64/FLOAT16 at same config = PARSE_FAIL (safe).

Tested: TensorRT 10.15.1.29. Crash: ACCESS_VIOLATION (0xC0000005).