Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-J8C8-67VP-6MX7
HistoryNov 10, 2021 - 6:34 p.m.

Arbitrary memory read in `ImmutableConst`

2021-11-1018:34:49
CWE-125
GitHub Advisory Database
github.com
17
tensorflow
immutableconst
arbitrary memory read
security patch
aivul team
qihoo 360

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

6.6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

EPSS

0.001

Percentile

29.1%

JSON

Impact

The ImmutableConst operation in TensorFlow can be tricked into reading arbitrary memory contents:

import tensorflow as tf
  
with open('/tmp/test','wb') as f:
    f.write(b'\xe2'*128)
    data = tf.raw_ops.ImmutableConst(dtype=tf.string,shape=3,memory_region_name='/tmp/test')
  
print(data)

This is because the tstring TensorFlow string class has a special case for memory mapped strings but the operation itself does not offer any support for this datatype.

Patches

We have patched the issue in GitHub commit 3712a2d3455e6ccb924daa5724a3652a86f6b585 and GitHub commit 1cb6bb6c2a6019417c9adaf9e6843ba75ee2580b.

The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported by members of the Aivul Team from Qihoo 360.

Affected configurations

Vulners
Node
tensorflowgpuRange<2.4.4
OR
tensorflowgpuRange<2.5.2
OR
tensorflowgpuRange<2.6.1
OR
tensorflowcpuRange<2.4.4
OR
tensorflowcpuRange<2.5.2
OR
tensorflowcpuRange<2.6.1
OR
tensorflowtensorflowRange<2.4.4
OR
tensorflowtensorflowRange<2.5.2
OR
tensorflowtensorflowRange<2.6.1
VendorProductVersionCPE
tensorflowgpu*cpe:2.3:a:tensorflow:gpu:*:*:*:*:*:*:*:*
tensorflowcpu*cpe:2.3:a:tensorflow:cpu:*:*:*:*:*:*:*:*
tensorflowtensorflow*cpe:2.3:a:tensorflow:tensorflow:*:*:*:*:*:*:*:*

Related

osv 6
prion 1
cnvd 1
veracode 1
cve 1
cvelist 1
nvd 1
ibm 1
osv
osv
CVE-2021-41227
2021-11-05 23:15:08
Arbitrary memory read in `ImmutableConst`
2021-11-10 18:34:49
BIT-tensorflow-2021-41227
2024-03-06 11:15:56
prion
prion
Stack overflow
2021-11-05 23:15:00
cnvd
cnvd
Google TensorFlow buffer overflow vulnerability (CNVD-2021-87034)
2021-11-09 00:00:00
veracode
veracode
Arbitrary Memory Read
2021-11-09 07:35:21
cve
cve
CVE-2021-41227
2021-11-05 23:15:08
cvelist
cvelist
CVE-2021-41227 Arbitrary memory read in `ImmutableConst`
2021-11-05 22:30:23
nvd
nvd
CVE-2021-41227
2021-11-05 23:15:08
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in TensorFlow
2021-12-17 04:21:06

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

6.6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

EPSS

0.001

Percentile

29.1%

JSON
Related for GHSA-J8C8-67VP-6MX7
osv6prion1cnvd1veracode1cve1cvelist1nvd1ibm1