CVE-2021-37680

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier

Description The implementation of fully connected layers in TFLite is vulnerable to a division by zero error. An attacker can craft a model such that filter->dims->data[1] is 0, causing the error. The issue has been reported by members of the Aivul Team from Qihoo 360 and Yakun Zhang of Baidu Security.

Recommendations For TensorFlow versions prior to 2.6.0, update to version 2.6.0 or later. For TensorFlow versions 2.5.1 and earlier, update to version 2.5.1 or later, or apply the patch from GitHub commit 718721986aa137691ee23f03638867151f74935f. For TensorFlow versions 2.4.3 and earlier, update to version 2.4.3 or later, or apply the patch from GitHub commit 718721986aa137691ee23f03638867151f74935f. For TensorFlow versions 2.3.4 and earlier, update to version 2.3.4 or later, or apply the patch from GitHub commit 718721986aa137691ee23f03638867151f74935f. As a temporary workaround, consider restricting the use of fully connected layers in TFLite until a patch is available.