CVE-2020-15190 — Improper Input Validation in Tensorflow

CWE-20 — Improper Input Validation CWE-476 — NULL Pointer Dereference6 documents5 sources

Severity

5.3MEDIUMNVD

EPSS

0.2%

top 59.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tensorflow Google Tensorflow Intel Optimization FOR Tensorflow +1 more

Timeline

PublishedSep 25

Description

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Switch` operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. However, the eager runtime traverses all tensors in the output. Since only one of the tensors is defined, the other one is `nullptr`, hence we are binding a reference to `nullptr`. This is undefined behavio…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶NVDgoogle/tensorflow2.0.0 — 2.0.3+4

▶CVEListV5tensorflow/tensorflow< 1.15.4+4

▶PyPIintel/optimization_for_tensorflow2.0.0 — 2.0.3+5

▶NVDopensuse/leap15.2

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

Segfault in Tensorflow↗2020-09-25

▶

OSV

Segfault in Tensorflow↗2020-09-25

▶

CVEList

Segfault in Tensorflow↗2020-09-25

▶

OSV

CVE-2020-15190: In Tensorflow before versions 1↗2020-09-25

▶

📋Vendor Advisories

Debian

CVE-2020-15190: tensorflow - In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw...↗2020

▶