Patch: TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation

[alwell-kevin]

Attackers using Tensorflow can exploit the vulnerability. They can access heap memory which is not in the control of user, leading to a crash or RCE. When axis is larger than the dim of input, c->Dim(input,axis) goes out of bound. Same problem occurs in the QuantizeAndDequantizeV2/V3/V4/V4Grad operations too.

[CLAassistant]

All committers have signed the CLA.