Lucene search

GitHub Advisory DatabaseGHSA-XQFJ-CR6Q-PC8W

HistoryMay 21, 2021 - 2:28 p.m.

Crash in `tf.transpose` with complex inputs

2021-05-2114:28:58

CWE-755

GitHub Advisory Database

github.com

tensorflow

crash

complex inputs

patch

github

commit

security guide

vulnerability

report

fix

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

36.8%

JSON

Impact

Passing a complex argument to tf.transpose at the same time as passing conjugate=True argument results in a crash:

import tensorflow as tf
tf.transpose(conjugate=True, a=complex(1))

Patches

We have received a patch for the issue in GitHub commit 1dc6a7ce6e0b3e27a7ae650bfc05b195ca793f88.

The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported in #42105 and fixed in #46973.

Affected configurations

Vulners

Node

tensorflow-gpuRange2.4.0–2.4.2

tensorflow-gpuRange2.3.0–2.3.3

tensorflow-gpuRange2.2.0–2.2.3

tensorflow-gpuRange<2.1.4

tensorflow-cpuRange2.4.0–2.4.2

tensorflow-cpuRange2.3.0–2.3.3

tensorflow-cpuRange2.2.0–2.2.3

tensorflow-cpuRange<2.1.4

tensorflowtensorflowRange2.4.0–2.4.2

tensorflowtensorflowRange2.3.0–2.3.3

tensorflowtensorflowRange2.2.0–2.2.3

tensorflowtensorflowRange<2.1.4

VendorProductVersionCPE
*tensorflow-gpu*cpe:2.3:a:*:tensorflow-gpu:*:*:*:*:*:*:*:*
*tensorflow-cpu*cpe:2.3:a:*:tensorflow-cpu:*:*:*:*:*:*:*:*
tensorflowtensorflow*cpe:2.3:a:tensorflow:tensorflow:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
*	tensorflow-gpu	*	cpe:2.3:a::tensorflow-gpu::::::::*
*	tensorflow-cpu	*	cpe:2.3:a::tensorflow-cpu::::::::*
tensorflow	tensorflow	*	cpe:2.3:a:tensorflow:tensorflow::::::::

References

github.com/advisories/GHSA-xqfj-cr6q-pc8w

github.com/tensorflow/issues/42105

github.com/tensorflow/issues/46973

github.com/tensorflow/tensorflow/commit/1dc6a7ce6e0b3e27a7ae650bfc05b195ca793f88

github.com/tensorflow/tensorflow/security/advisories/GHSA-xqfj-cr6q-pc8w

nvd.nist.gov/vuln/detail/CVE-2021-29618

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

36.8%

JSON

Related for GHSA-XQFJ-CR6Q-PC8W