tensorflow is vulnerable to denial of service. The vulnerability exists in random_op.cc
and random_poisson_op.cc
because the RandomPoissonV2
doesn’t check the size for large input shape and rates which allows an attacker to send inputs that exceed the size check causing an application crash.
github.com/tensorflow/tensorflow/commit/3cb72d57631c34344fee045a9480d04ab20d1412
github.com/tensorflow/tensorflow/commit/552bfced6ce4809db5f3ca305f60ff80dd40c5a3
github.com/tensorflow/tensorflow/commit/bf636ce5867f1aedf5029e0ccb109967265152cb
github.com/tensorflow/tensorflow/commit/d3d3cf0101421a85e136311d7354c78d2b81912f
github.com/tensorflow/tensorflow/pull/57322
github.com/tensorflow/tensorflow/pull/57323
github.com/tensorflow/tensorflow/pull/57324
github.com/tensorflow/tensorflow/security/advisories/GHSA-cv2p-32v3-vhwq