Lucene search

GitHub Advisory DatabaseGHSA-C94W-C95P-PHF8

HistoryFeb 10, 2022 - 12:32 a.m.

Integer overflow in Tensorflow

2022-02-1000:32:59

CWE-190

GitHub Advisory Database

github.com

tensorflow

integer overflow

security patch

github commit

tensor size

operation vulnerability

data type size

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

51.9%

JSON

Impact

The implementation of OpLevelCostEstimator::CalculateTensorSize is vulnerable to an integer overflow if an attacker can create an operation which would involve a tensor with large enough number of elements:

int64_t OpLevelCostEstimator::CalculateTensorSize(
    const OpInfo::TensorProperties& tensor, bool* found_unknown_shapes) {
  int64_t count = CalculateTensorElementCount(tensor, found_unknown_shapes);
  int size = DataTypeSize(BaseType(tensor.dtype()));
  VLOG(2) &lt;&lt; "Count: " &lt;&lt; count &lt;&lt; " DataTypeSize: " &lt;&lt; size;
  return count * size;
}

Here, count and size can be large enough to cause count * size to overflow.

Patches

We have patched the issue in GitHub commit fcd18ce3101f245b083b30655c27b239dc72221e.

The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Affected configurations

Vulners

Node

tensorflow-gpuMatch2.7.0

tensorflow-gpuRange2.6.0–2.6.3

tensorflow-gpuRange<2.5.3

tensorflow-cpuMatch2.7.0

tensorflow-cpuRange2.6.0–2.6.3

tensorflow-cpuRange<2.5.3

tensorflowtensorflowMatch2.7.0

tensorflowtensorflowRange2.6.0–2.6.3

tensorflowtensorflowRange<2.5.3

VendorProductVersionCPE
*tensorflow-gpu2.7.0cpe:2.3:a:*:tensorflow-gpu:2.7.0:*:*:*:*:*:*:*
*tensorflow-gpu*cpe:2.3:a:*:tensorflow-gpu:*:*:*:*:*:*:*:*
*tensorflow-cpu2.7.0cpe:2.3:a:*:tensorflow-cpu:2.7.0:*:*:*:*:*:*:*
*tensorflow-cpu*cpe:2.3:a:*:tensorflow-cpu:*:*:*:*:*:*:*:*
tensorflowtensorflow2.7.0cpe:2.3:a:tensorflow:tensorflow:2.7.0:*:*:*:*:*:*:*
tensorflowtensorflow*cpe:2.3:a:tensorflow:tensorflow:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
*	tensorflow-gpu	2.7.0	cpe:2.3:a::tensorflow-gpu:2.7.0:::::::
*	tensorflow-gpu	*	cpe:2.3:a::tensorflow-gpu::::::::*
*	tensorflow-cpu	2.7.0	cpe:2.3:a::tensorflow-cpu:2.7.0:::::::
*	tensorflow-cpu	*	cpe:2.3:a::tensorflow-cpu::::::::*
tensorflow	tensorflow	2.7.0	cpe:2.3:a:tensorflow:tensorflow:2.7.0:::::::*
tensorflow	tensorflow	*	cpe:2.3:a:tensorflow:tensorflow::::::::

References

github.com/advisories/GHSA-c94w-c95p-phf8

github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/grappler/costs/op_level_cost_estimator.cc#L1552-L1558

github.com/tensorflow/tensorflow/commit/fcd18ce3101f245b083b30655c27b239dc72221e

github.com/tensorflow/tensorflow/security/advisories/GHSA-c94w-c95p-phf8

nvd.nist.gov/vuln/detail/CVE-2022-23575

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

51.9%

JSON

Related for GHSA-C94W-C95P-PHF8