CVE-2021-41215

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.7.0 TensorFlow versions 2.6.1 and earlier TensorFlow versions 2.5.2 and earlier TensorFlow versions 2.4.4 and earlier

Description The shape inference code for DeserializeSparse can trigger a null pointer dereference. This occurs because the shape inference function assumes that the serialize sparse tensor is a tensor with positive rank and having 3 as the last dimension. However, if the argument is a scalar, it can cause the issue.

Recommendations For versions prior to 2.7.0, update to TensorFlow 2.7.0 or later. For versions 2.6.1 and earlier, update to TensorFlow 2.6.1 or later. For versions 2.5.2 and earlier, update to TensorFlow 2.5.2 or later. For versions 2.4.4 and earlier, update to TensorFlow 2.4.4 or later. As a temporary workaround, consider avoiding the use of the DeserializeSparse function with scalar arguments until a patch is available.