python310Packages.tensorflow-bin: mark insecureorigin/backport-224436-to-release-22.11

(cherry picked from commit c9deaf22c435861510396314f4b30f446c4e1f6b)
author: Robert Schütz <nix@dotlambda.de> 2023-04-02 21:16:57 -0700
committer: github-actions[bot] <github-actions[bot]@users.noreply.github.com> 2023-04-04 14:22:06 +0000
commit: fcba07b51cbcfbb6abb43b8367575c2a125c6486 (patch)
tree: 51d4daef56fdc4448ab89636997190074892a9f3
parent: python310Packages.tensorflow: mark insecure (diff)
download: nixpkgs-origin/backport-224436-to-release-22.11.tar.gz
1 files changed, 21 insertions, 0 deletions
diff --git a/pkgs/development/python-modules/tensorflow/bin.nix b/pkgs/development/python-modules/tensorflow/bin.nix
index 96f54632069e..9ba0e4eb5ed1 100644
--- a/pkgs/development/python-modules/tensorflow/bin.nix
+++ b/pkgs/development/python-modules/tensorflow/bin.nix
@@ -198,5 +198,26 @@ in buildPythonPackage {
     license = licenses.asl20;
     maintainers = with maintainers; [ jyp abbradar cdepillabout ];
     platforms = [ "x86_64-linux" "x86_64-darwin" ];
+    knownVulnerabilities = optionals (versionOlder packages.version "2.12.0") [
+      "CVE-2023-27579"
+      "CVE-2023-25801"
+      "CVE-2023-25676"
+      "CVE-2023-25675"
+      "CVE-2023-25674"
+      "CVE-2023-25673"
+      "CVE-2023-25671"
+      "CVE-2023-25670"
+      "CVE-2023-25669"
+      "CVE-2023-25668"
+      "CVE-2023-25667"
+      "CVE-2023-25665"
+      "CVE-2023-25666"
+      "CVE-2023-25664"
+      "CVE-2023-25663"
+      "CVE-2023-25662"
+      "CVE-2023-25660"
+      "CVE-2023-25659"
+      "CVE-2023-25658"
+    ];
   };
 }
author	Robert Schütz <nix@dotlambda.de>	2023-04-02 21:16:57 -0700
committer	github-actions[bot] <github-actions[bot]@users.noreply.github.com>	2023-04-04 14:22:06 +0000
commit	fcba07b51cbcfbb6abb43b8367575c2a125c6486 (patch)
tree	51d4daef56fdc4448ab89636997190074892a9f3
parent	python310Packages.tensorflow: mark insecure (diff)
download	nixpkgs-origin/backport-224436-to-release-22.11.tar.gz