PT-2022-15074 · Google · Tensorflow
Faysal Hossain Shezan
·
Published
2022-02-03
·
Updated
2024-03-06
·
CVE-2022-21734
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
TensorFlow versions prior to 2.8.0
TensorFlow versions 2.7.1, 2.6.3, and 2.5.3 are also affected
Description
The implementation of
MapStage is vulnerable to a CHECK-fail if the key tensor is not a scalar. This issue can be triggered by passing a non-scalar key tensor to the MapStage function. For example, using the tf.raw ops.MapStage function with a key tensor that has a shape of (1,2) can cause the CHECK-fail.Recommendations
For TensorFlow versions prior to 2.8.0, update to version 2.8.0 or later to resolve the issue.
For TensorFlow version 2.7.1, update to a patched version that includes the fix for this issue.
For TensorFlow version 2.6.3, update to a patched version that includes the fix for this issue.
For TensorFlow version 2.5.3, update to a patched version that includes the fix for this issue.
As a temporary workaround, consider validating the shape of the key tensor before passing it to the
MapStage function to prevent the CHECK-fail.Exploit
Fix
Type Confusion
Assertion Failure
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tensorflow