GHSA-hwpq-hmq9-wj77: ONNX has Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs)
Summary
ONNX has a null pointer dereference (a crash caused by accessing invalid memory) in its version converter when processing Upsample nodes that have zero inputs. The converter checks that required attributes exist but fails to verify that the node actually has inputs before trying to access them, causing a crash (SIGSEGV) when converting models from opset version 6 to 7.
Solution / Mitigation
All affected adapters, including the Upsample_6_7 adapter, have been fixed in PR #7813. A full audit of all ~45 adapters identified eight adapters with the same unguarded indexed access vulnerability (cast_9_8, softmax_12_13, softmax_13_12, upsample_6_7, upsample_9_10, group_normalization_20_21, broadcast_forward_compatibility, upsample_9_8), and all have been corrected.
Vulnerability Details
EPSS: 0.0%
Yes
July 7, 2026
Classification
Affected Vendors
Affected Packages
Related Issues
CVE-2026-47482: NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause missing release of memory
CVE-2022-29200: TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implem
Original source: https://github.com/advisories/GHSA-hwpq-hmq9-wj77
First tracked: July 7, 2026 at 02:01 PM
Classified by LLM (prompt v3) · confidence: 92%