CVE-2021-29532

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier

Description: An attacker can force accesses outside the bounds of heap allocated arrays by passing in invalid tensor values to tf.raw ops.RaggedCross. This is because the implementation lacks validation for the user supplied arguments. Each of the above branches call a helper function after accessing array elements via a * list[next *] pattern, followed by incrementing the next * index. However, as there is no validation that the next * values are in the valid range for the corresponding * list arrays, this results in heap OOB reads.

Recommendations: For TensorFlow versions prior to 2.5.0, update to version 2.5.0 or later. For TensorFlow versions 2.4.2 and earlier, update to version 2.4.2 or later. For TensorFlow versions 2.3.3 and earlier, update to version 2.3.3 or later. For TensorFlow versions 2.2.3 and earlier, update to version 2.2.3 or later. For TensorFlow versions 2.1.4 and earlier, update to version 2.1.4 or later. As a temporary workaround, consider restricting the use of tf.raw ops.RaggedCross until a patch is available.