PT-2021-21800 · Google · Tensorflow

Mihaimaruseac

Published

2021-08-12

Updated

2024-03-06

CVE-2021-37681

CVSS v4.0

8.5

High

Vector

AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.6.0 TensorFlow version 2.5.1 TensorFlow version 2.4.3 TensorFlow version 2.3.4

Description The implementation of SVDF in TFLite is vulnerable to a null pointer error. The GetVariableInput function can return a null pointer, but GetTensorData assumes that the argument is always a valid tensor. Furthermore, because GetVariableInput calls GetMutableInput which might return nullptr, the tensor->is variable expression can also trigger a null pointer exception.

Recommendations For TensorFlow versions prior to 2.6.0, update to version 2.6.0 or later. For TensorFlow version 2.5.1, apply the patch from GitHub commit 5b048e87e4e55990dae6b547add4dae59f4e1c76. For TensorFlow version 2.4.3, apply the patch from GitHub commit 5b048e87e4e55990dae6b547add4dae59f4e1c76. For TensorFlow version 2.3.4, apply the patch from GitHub commit 5b048e87e4e55990dae6b547add4dae59f4e1c76. As a temporary workaround, consider disabling the GetVariableInput function until a patch is available.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BIT-TENSORFLOW-2021-37681

CVE-2021-37681

GHSA-7XWJ-5R4V-429P

OPENSUSE-SU-2022:10014-1

OPENSUSE-SU-2024:12116-1

PYSEC-2021-303

PYSEC-2021-594

PYSEC-2021-792

Affected Products

Tensorflow

PT-2021-21800 · Google · Tensorflow

CVE-2021-37681

Weakness Enumeration

Related Identifiers

Affected Products

References · 88