CVE-2021-29518

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier

Description: The issue arises in eager mode, where session operations are invalid, but users can still call raw ops associated with them, triggering a null pointer dereference. The implementation dereferences the session state pointer without checking its validity, leading to undefined behavior when ctx->session state() is nullptr.

Recommendations: For versions prior to 2.5.0, update to TensorFlow 2.5.0 or later. For versions 2.4.2 and earlier, update to TensorFlow 2.4.2 or later. For versions 2.3.3 and earlier, update to TensorFlow 2.3.3 or later. For versions 2.2.3 and earlier, update to TensorFlow 2.2.3 or later. For versions 2.1.4 and earlier, update to TensorFlow 2.1.4 or later. As a temporary workaround, consider avoiding the use of tf.raw ops.GetSessionTensor and tf.raw ops.DeleteSessionTensor in eager mode until the issue is resolved.