Tensorflow is vulnerable to denial of service. An attacker is able to crash the system by altering a SavedModel
in Grappler optimizer such that IsSimplifiableReshape
would trigger CHECK
failures.
github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/grappler/optimizers/constant_folding.cc#L1687-L1742
github.com/tensorflow/tensorflow/commit/1fb27733f943295d874417630edd3b38b34ce082
github.com/tensorflow/tensorflow/commit/240655511cd3e701155f944a972db71b6c0b1bb6
github.com/tensorflow/tensorflow/commit/ebc1a2ffe5a7573d905e99bd0ee3568ee07c12c1
github.com/tensorflow/tensorflow/security/advisories/GHSA-fq86-3f29-px2c