PT-2022-26134 · Google · Tensorflow
Highpak-Laura
·
Published
2022-11-21
·
Updated
2024-03-06
·
CVE-2022-41902
CVSS v3.1
7.1
High
| Vector | AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TensorFlow versions prior to 2.11.0
TensorFlow versions 2.8.4, 2.9.3, and 2.10.1 are affected, but will be patched with a cherrypick commit.
Description
The function
MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered.Recommendations
For versions prior to 2.11.0, update to TensorFlow 2.11.0 to resolve the issue.
For versions 2.8.4, 2.9.3, and 2.10.1, apply the cherrypick commit to resolve the issue.
As a temporary workaround, consider restricting the use of the
MakeGrapplerFunctionItem function until a patch is available.Exploit
Fix
Out of bounds Read
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tensorflow