CVE-2020-15203

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-15203
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15203.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-15203
Aliases
Downstream
Related
Published
2020-09-25T19:15:15.620Z
Modified
2026-04-11T12:40:01.072051Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, by controlling the fill argument of tf.strings.as_string, a malicious attacker is able to trigger a format string vulnerability due to the way the internal format use in a printf call is constructed. This may result in segmentation fault. The issue is patched in commit 33be22c65d86256e6826666662e40dbdfe70ee83, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

References

Affected packages

Git / github.com/tensorflow/tensorflow

Affected ranges

Type
GIT
Repo
https://github.com/tensorflow/tensorflow
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
df8c55ce12b5cfc6f29b01889f7773911a75e6ef
Introduced
64c3d382cadf7bbe8e7e99884bede8284ff67f56
Fixed
295ad2781683835be974faba0a191528d8079768
Introduced
e5bf8de410005de06a7ff5393fafdf832ef1d4ad
Fixed
ab35f2bf7132f9d20a0bea9a5d1849862737d4b4
Introduced
2b96f3662bd776e277f86997659e61046b56c315
Fixed
25fba035f3e453d94490932096282c7b0624bbb3
Introduced
b36436b087bd8e8701ef51718179037cccdfc26e
Fixed
fcc4b966f1265f466e82617020af93670141b009
Fixed
33be22c65d86256e6826666662e40dbdfe70ee83
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.15.4"
        },
        {
            "introduced": "2.0.0"
        },
        {
            "fixed": "2.0.3"
        },
        {
            "introduced": "2.1.0"
        },
        {
            "fixed": "2.1.2"
        },
        {
            "introduced": "2.2.0"
        },
        {
            "fixed": "2.2.1"
        },
        {
            "introduced": "2.3.0"
        },
        {
            "fixed": "2.3.1"
        }
    ]
}

Affected versions

0.*
0.5.0
0.6.0
v1.*
v1.1.0-rc1
v1.1.0-rc2
v1.12.1
v1.15.0
v1.15.0-rc0
v1.15.0-rc1
v1.15.0-rc2
v1.15.0-rc3
v1.15.2
v1.15.3
v1.6.0-rc1
v1.9.0-rc2
v2.*
v2.0.0
v2.0.1
v2.0.2
v2.1.0
v2.1.1
v2.2.0
v2.3.0

Database specific

vanir_signatures_modified 
"2026-04-11T12:40:01Z"
vanir_signatures 
[
    {
        "id": "CVE-2020-15203-cfa10dde",
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "206617985118558538529064265088358506050",
                "36011196493717310763760445257547073539",
                "192696605584224270812170664389958789291",
                "1980539605768254906950715195079541493",
                "152339483582920554484913187528460250088",
                "143950074638617193147727768190516940432",
                "66589887189099342910750197368961127255"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/tensorflow/tensorflow/commit/33be22c65d86256e6826666662e40dbdfe70ee83",
        "deprecated": false,
        "target": {
            "file": "tensorflow/core/kernels/as_string_op.cc"
        },
        "signature_type": "Line"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15203.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "15.2"
            }
        ]
    }
]