PT-2022-16091 · Google · Tensorflow
Mihaimaruseac
·
Published
2022-02-04
·
Updated
2024-03-06
·
CVE-2022-23574
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TensorFlow versions prior to 2.6.3
TensorFlow versions prior to 2.7.1
TensorFlow versions prior to 2.8.0
Description
There is a typo in TensorFlow's
SpecializeType which results in heap out-of-bounds read/write. Due to the typo, arg is initialized to the ith mutable argument in a loop where the loop index is j, allowing assignment to arg from outside the vector of arguments. This enables both read and write to outside of bounds data.Recommendations
For versions prior to 2.6.3, update to TensorFlow 2.6.3 or later.
For versions prior to 2.7.1, update to TensorFlow 2.7.1 or later.
For versions prior to 2.8.0, update to TensorFlow 2.8.0 or later.
Exploit
Fix
Out of bounds Read
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tensorflow