CVE-2021-33649 Information

Description

When performing the inference shape operation of the Transpose operator if the value in the perm element is greater than or equal to the size of the input_shape it will access data outside of bounds of input_shape which allocated from heap buffers.

Reference

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-006_en.md