GoogleOSV:GHSA-V52P-HFJF-WG88Division by zero in TFLite's implementation of `SpaceToBatchNd`
0.0005 Low
EPSS
Percentile
17.9%
Impact
The implementation of the SpaceToBatchNd TFLite operator is vulnerable to a division by zero error:
TF_LITE_ENSURE_EQ(context, final_dim_size % block_shape[dim], 0);
output_size->data[dim + 1] = final_dim_size / block_shape[dim];
An attacker can craft a model such that one dimension of the block input is 0. Hence, the corresponding value in block_shape is 0.
Patches
We have patched the issue in GitHub commit 6d36ba65577006affb272335b7c1abd829010708.
The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.
For more information
Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.
Attribution
This vulnerability has been reported by members of the Aivul Team from Qihoo 360.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tensorflow | eq | 1.2.0 | |
| tensorflow | eq | 2.0.3 | |
| tensorflow | eq | 1.10.0 | |
| tensorflow | eq | 1.6.0 | |
| tensorflow | eq | 2.3.0 | |
| tensorflow | eq | 1.15.0 | |
| tensorflow | eq | 1.4.0 | |
| tensorflow | eq | 1.15.2 | |
| tensorflow | eq | 1.15.5 | |
| tensorflow | eq | 1.4.1 |
Related
