CVE-2022-21740

Name of the Vulnerable Software and Affected Versions TensorFlow versions prior to 2.8.0 TensorFlow versions 2.7.1, 2.6.3, and 2.5.3 are also affected

Description The implementation of SparseCountSparseOutput in TensorFlow is vulnerable to a heap overflow. This issue can be exploited using the tf.raw ops.SparseCountSparseOutput function with specific parameters, such as indices=[[-1,-1]], values=[2], dense shape=[1, 1], weights=[1], binary output=True, minlength=-1, and maxlength=-1. The vulnerability was reported by Faysal Hossain Shezan from the University of Virginia.

Recommendations For TensorFlow versions prior to 2.8.0, update to version 2.8.0 or later to resolve the issue. For TensorFlow versions 2.7.1, 2.6.3, and 2.5.3, apply the cherrypicked commit to fix the vulnerability. As a temporary workaround, consider avoiding the use of the SparseCountSparseOutput function until a patch is available.