CVE-2021-29558

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.5.0 TensorFlow version 2.4.2 TensorFlow version 2.3.3 TensorFlow version 2.2.3 TensorFlow version 2.1.4

Description An attacker can cause a heap buffer overflow in tf.raw ops.SparseSplit because the implementation accesses an array element based on a user-controlled offset. This results in overriding values on the heap. The issue has been reported by Ying Wang and Yakun Zhang of Baidu X-Team.

Recommendations For TensorFlow versions prior to 2.5.0, update to version 2.5.0 or later. For TensorFlow version 2.4.2, apply the patch from GitHub commit 8ba6fa29cd8bf9cef9b718dc31c78c73081f5b31. For TensorFlow version 2.3.3, apply the patch from GitHub commit 8ba6fa29cd8bf9cef9b718dc31c78c73081f5b31. For TensorFlow version 2.2.3, apply the patch from GitHub commit 8ba6fa29cd8bf9cef9b718dc31c78c73081f5b31. For TensorFlow version 2.1.4, apply the patch from GitHub commit 8ba6fa29cd8bf9cef9b718dc31c78c73081f5b31. As a temporary workaround, consider avoiding the use of tf.raw ops.SparseSplit until a patch is applied.