CVE-2021-33650 Information

Description

When performing the inference shape operation of the SparseToDense operator if the number of inputs is less than three it will access data outside of bounds of inputs which allocated from heap buffers.

Reference

https://gitee.com/mindspore/community/blob/master/security/security_advisory_list/mssa-2021-005_en.md