BIT-tensorflow-2020-15201

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/tensorflow/BIT-tensorflow-2020-15201.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-tensorflow-2020-15201

Aliases

Published

2024-03-06T11:20:38.643Z

Modified

2025-05-20T10:02:07.006Z

Summary

Heap buffer overflow in Tensorflow

Details

In Tensorflow before version 2.3.1, the RaggedCountSparseOutput implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the values in the splits tensor generate a valid partitioning of the values tensor. Hence, the code is prone to heap buffer overflow. If split_values does not end with a value at least num_values then the while loop condition will trigger a read outside of the bounds of split_values once batch_idx grows too large. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1.

Database specific

{
    "cpes": [
        "cpe:2.3:a:google:tensorflow:2.3.0:*:*:*:-:*:*:*",
        "cpe:2.3:a:google:tensorflow:*:*:*:*:-:*:*:*"
    ],
    "severity": "Medium"
}

References

Affected packages

Bitnami / tensorflow

Package

Name: tensorflow
Purl: pkg:bitnami/tensorflow

Severity

4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

2.3.0

Fixed

2.3.1