CVE-2021-29588

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.5.0 TensorFlow versions 2.4.2 and earlier TensorFlow versions 2.3.3 and earlier TensorFlow versions 2.2.3 and earlier TensorFlow versions 2.1.4 and earlier

Description The optimized implementation of the TransposeConv TFLite operator is vulnerable to a division by zero error. An attacker can craft a model such that stride {h,w} values are 0. Code calling this function must validate these arguments.

Recommendations For TensorFlow versions prior to 2.5.0, update to version 2.5.0 or later. For TensorFlow versions 2.4.2 and earlier, update to version 2.4.2 or later, or apply the patch from GitHub commit 801c1c6be5324219689c98e1bd3e0ca365ee834d. For TensorFlow versions 2.3.3 and earlier, update to version 2.3.3 or later, or apply the patch from GitHub commit 801c1c6be5324219689c98e1bd3e0ca365ee834d. For TensorFlow versions 2.2.3 and earlier, update to version 2.2.3 or later, or apply the patch from GitHub commit 801c1c6be5324219689c98e1bd3e0ca365ee834d. For TensorFlow versions 2.1.4 and earlier, update to version 2.1.4 or later, or apply the patch from GitHub commit 801c1c6be5324219689c98e1bd3e0ca365ee834d. As a temporary workaround, consider validating the stride {h,w} values in the TransposeConv TFLite operator to prevent division by zero errors.