Lucene search

GitHub Advisory DatabaseGHSA-PFJJ-M3JJ-9JC9

HistoryFeb 09, 2022 - 11:43 p.m.

Undefined behavior in `SparseTensorSliceDataset`

2022-02-0923:43:27

CWE-476

GitHub Advisory Database

github.com

`sparsetensorslicedataset

tensorflow

security`

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

7.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

EPSS

0.002

Percentile

51.9%

JSON

Impact

The implementation of SparseTensorSliceDataset has an undefined behavior: under certain condition it can be made to dereference a nullptr value:

import tensorflow as tf
import numpy as np

tf.raw_ops.SparseTensorSliceDataset(
  indices=[[]],
  values=[],
  dense_shape=[1,1])

The 3 input arguments represent a sparse tensor. However, there are some preconditions that these arguments must satisfy but these are not validated in the implementation.

Patches

We have patched the issue in GitHub commit 965b97e4a9650495cda5a8c210ef6684b4b9eceb.

The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported by Faysal Hossain Shezan from University of Virginia.

Affected configurations

Vulners

Node

tensorflowgpuMatch2.7.0

tensorflowgpuRange<2.6.3

tensorflowgpuRange<2.5.3

tensorflowcpuMatch2.7.0

tensorflowcpuRange<2.6.3

tensorflowcpuRange<2.5.3

tensorflowtensorflowMatch2.7.0

tensorflowtensorflowRange<2.6.3

tensorflowtensorflowRange<2.5.3

VendorProductVersionCPE
tensorflowgpu2.7.0cpe:2.3:a:tensorflow:gpu:2.7.0:*:*:*:*:*:*:*
tensorflowgpu*cpe:2.3:a:tensorflow:gpu:*:*:*:*:*:*:*:*
tensorflowcpu2.7.0cpe:2.3:a:tensorflow:cpu:2.7.0:*:*:*:*:*:*:*
tensorflowcpu*cpe:2.3:a:tensorflow:cpu:*:*:*:*:*:*:*:*
tensorflowtensorflow2.7.0cpe:2.3:a:tensorflow:tensorflow:2.7.0:*:*:*:*:*:*:*
tensorflowtensorflow*cpe:2.3:a:tensorflow:tensorflow:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tensorflow	gpu	2.7.0	cpe:2.3:a:tensorflow:gpu:2.7.0:::::::*
tensorflow	gpu	*	cpe:2.3:a:tensorflow:gpu::::::::
tensorflow	cpu	2.7.0	cpe:2.3:a:tensorflow:cpu:2.7.0:::::::*
tensorflow	cpu	*	cpe:2.3:a:tensorflow:cpu::::::::
tensorflow	tensorflow	2.7.0	cpe:2.3:a:tensorflow:tensorflow:2.7.0:::::::*
tensorflow	tensorflow	*	cpe:2.3:a:tensorflow:tensorflow::::::::

References

github.com/advisories/GHSA-pfjj-m3jj-9jc9

github.com/tensorflow/tensorflow/blob/5100e359aef5c8021f2e71c7b986420b85ce7b3d/tensorflow/core/kernels/data/sparse_tensor_slice_dataset_op.cc#L227-L292

github.com/tensorflow/tensorflow/commit/965b97e4a9650495cda5a8c210ef6684b4b9eceb

github.com/tensorflow/tensorflow/security/advisories/GHSA-pfjj-m3jj-9jc9

nvd.nist.gov/vuln/detail/CVE-2022-21736

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

7.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

EPSS

0.002

Percentile

51.9%

JSON

Related for GHSA-PFJJ-M3JJ-9JC9