Lucene search
GoogleOSV:BIT-TENSORFLOW-2021-29558HistoryMar 06, 2024 - 11:19 a.m.
BIT-tensorflow-2021-29558
2024-03-0611:19:12
Google
osv.dev
2
tensorflow
machine learning
heap buffer overflow
vulnerability
fix
cherrypick
software
implementation access
array element
user controlled offset
TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a heap buffer overflow in tf.raw_ops.SparseSplit. This is because the implementation(https://github.com/tensorflow/tensorflow/blob/699bff5d961f0abfde8fa3f876e6d241681fbef8/tensorflow/core/util/sparse/sparse_tensor.h#L528-L530) accesses an array element based on a user controlled offset. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tensorflow | lt | 2.1.4 | |
| tensorflow | lt | 2.2.3 | |
| tensorflow | lt | 2.3.3 | |
| tensorflow | ge | 2.2.0 | |
| tensorflow | lt | 2.4.2 | |
| tensorflow | ge | 2.4.0 | |
| tensorflow | ge | 2.3.0 |
Related
osv
osv
cvelist
cvelist
CVE-2021-29558 Heap buffer overflow in `SparseSplit`
2021-05-14 19:17:35
cve
cve
CVE-2021-29558
2021-05-14 20:15:00
prion
prion
Heap overflow
2021-05-14 20:15:00
veracode
veracode
Denial Of Service (DoS)
2021-05-17 06:24:40
github
github
Heap buffer overflow in `SparseSplit`
2021-05-21 14:24:51
ibm
ibm
7.2 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.0%
Related for OSV:BIT-TENSORFLOW-2021-29558