GHSA-cqvq-fvhr-v6hc

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-cqvq-fvhr-v6hc/GHSA-cqvq-fvhr-v6hc.json
Published
2022-11-21T23:51:53Z
Modified
2023-04-11T01:45:23.912128Z
Details

Impact

Another instance of CVE-2022-35935, where SobolSample is vulnerable to a denial of service via assumed scalar inputs, was found and fixed.

import tensorflow as tf
tf.raw_ops.SobolSample(dim=tf.constant([1,0]), num_results=tf.constant([1]), skip=tf.constant([1]))

Patches

We have patched the issue in GitHub commits c65c67f88ad770662e8f191269a907bf2b94b1bf and 02400ea266bd811fc016a848445de1bbff3a23a0

The fix will be included in TensorFlow 2.11. We will also cherrypick both commits on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range. TensorFlow 2.7.4 will have the first commit cherrypicked.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported by: - Kang Hong Jin from Singapore Management University - Neophytos Christou, Secure Systems Labs, Brown University - 刘力源, Information System & Security and Countermeasures Experiments Center, Beijing Institute of Technology - Pattarakrit Rattankul

References

Affected packages

PyPI / tensorflow

Source Details

Package Name
tensorflow

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
2.8.4

Affected versions

0.*

0.12.0
0.12.1

1.*

1.0.0
1.0.1
1.1.0
1.2.0
1.2.1
1.3.0
1.4.0
1.4.1
1.5.0
1.5.1
1.6.0
1.7.0
1.7.1
1.8.0
1.9.0
1.10.0
1.10.1
1.11.0
1.12.0
1.12.2
1.12.3
1.13.1
1.13.2
1.14.0
1.15.0
1.15.2
1.15.3
1.15.4
1.15.5

2.*

2.0.0
2.0.1
2.0.2
2.0.3
2.0.4
2.1.0
2.1.1
2.1.2
2.1.3
2.1.4
2.2.0
2.2.1
2.2.2
2.2.3
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.5.0
2.5.1
2.5.2
2.5.3
2.6.0rc0
2.6.0rc1
2.6.0rc2
2.6.0
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.7.0rc0
2.7.0rc1
2.7.0
2.7.1
2.7.2
2.7.3
2.7.4
2.8.0rc0
2.8.0rc1
2.8.0
2.8.1
2.8.2
2.8.3

PyPI / tensorflow

Source Details

Package Name
tensorflow

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.9.0
Fixed
2.9.3

Affected versions

2.*

2.9.0
2.9.1
2.9.2

PyPI / tensorflow

Source Details

Package Name
tensorflow

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.10.0
Fixed
2.10.1

Affected versions

2.*

2.10.0

PyPI / tensorflow-cpu

Source Details

Package Name
tensorflow-cpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
2.8.4

Affected versions

1.*

1.15.0

2.*

2.1.0
2.1.1
2.1.2
2.1.3
2.1.4
2.2.0
2.2.1
2.2.2
2.2.3
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.5.0
2.5.1
2.5.2
2.5.3
2.6.0
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.7.0
2.7.1
2.7.2
2.7.3
2.7.4
2.8.0
2.8.1
2.8.2
2.8.3

PyPI / tensorflow-gpu

Source Details

Package Name
tensorflow-gpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
2.8.4

Affected versions

0.*

0.12.0
0.12.1

1.*

1.0.0
1.0.1
1.1.0
1.2.0
1.2.1
1.3.0
1.4.0
1.4.1
1.5.0
1.5.1
1.6.0
1.7.0
1.7.1
1.8.0
1.9.0
1.10.0
1.10.1
1.11.0
1.12.0
1.12.2
1.12.3
1.13.1
1.13.2
1.14.0
1.15.0
1.15.2
1.15.3
1.15.4
1.15.5

2.*

2.0.0
2.0.1
2.0.2
2.0.3
2.0.4
2.1.0
2.1.1
2.1.2
2.1.3
2.1.4
2.2.0
2.2.1
2.2.2
2.2.3
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.5.0
2.5.1
2.5.2
2.5.3
2.6.0
2.6.1
2.6.2
2.6.3
2.6.4
2.6.5
2.7.0rc0
2.7.0rc1
2.7.0
2.7.1
2.7.2
2.7.3
2.7.4
2.8.0rc0
2.8.0rc1
2.8.0
2.8.1
2.8.2
2.8.3

PyPI / tensorflow-cpu

Source Details

Package Name
tensorflow-cpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.9.0
Fixed
2.9.3

Affected versions

2.*

2.9.0
2.9.1
2.9.2

PyPI / tensorflow-gpu

Source Details

Package Name
tensorflow-gpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.9.0
Fixed
2.9.3

Affected versions

2.*

2.9.0
2.9.1
2.9.2

PyPI / tensorflow-cpu

Source Details

Package Name
tensorflow-cpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.10.0
Fixed
2.10.1

Affected versions

2.*

2.10.0

PyPI / tensorflow-gpu

Source Details

Package Name
tensorflow-gpu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.10.0
Fixed
2.10.1

Affected versions

2.*

2.10.0