Another instance of CVE-2022-35935, where
SobolSample is vulnerable to a denial of service via assumed scalar inputs, was found and fixed.
import tensorflow as tf tf.raw_ops.SobolSample(dim=tf.constant([1,0]), num_results=tf.constant(), skip=tf.constant())
The fix will be included in TensorFlow 2.11. We will also cherrypick both commits on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range. TensorFlow 2.7.4 will have the first commit cherrypicked.
Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.
This vulnerability has been reported by: - Kang Hong Jin from Singapore Management University - Neophytos Christou, Secure Systems Labs, Brown University - 刘力源, Information System & Security and Countermeasures Experiments Center, Beijing Institute of Technology - Pattarakrit Rattankul