CVE-2021-29579Improper Restriction of Operations within the Bounds of a Memory Buffer in Tensorflow

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-787Out-of-bounds WriteCWE-1284Improper Validation of Specified Quantity in InputCWE-20Improper Input Validation12 documents5 sources
Severity
7.8HIGHNVD
NVD5.5CNA2.5
EPSS
0.0%
top 95.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
TensorflowGoogle TensorflowIntel Optimization FOR Tensorflow
Timeline
PublishedMay 14
Latest updateAug 25

Description

TensorFlow is an end-to-end open source platform for machine learning. The implementation of `tf.raw_ops.MaxPoolGrad` is vulnerable to a heap buffer overflow. The implementation(https://github.com/tensorflow/tensorflow/blob/ab1e644b48c82cb71493f4362b4dd38f4577a1cf/tensorflow/core/kernels/maxpooling_op.cc#L194-L203) fails to validate that indices used to access elements of input/output arrays are valid. Whereas accesses to `input_backprop_flat` are guarded by `FastBoundsCheck`, the indexing in `o

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDgoogle/tensorflow2.3.02.3.4+7
CVEListV5tensorflow/tensorflow< 2.1.4+6
PyPIintel/optimization_for_tensorflow2.2.02.2.3+9

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

8
OSV
Incomplete validation in `MaxPoolGrad`2021-08-25
GHSA
Incomplete validation in `MaxPoolGrad`2021-08-25
CVEList
Incomplete validation in `MaxPoolGrad` in TensorFlow2021-08-12
OSV
CVE-2021-37674: TensorFlow is an end-to-end open source platform for machine learning2021-08-12
OSV
Heap buffer overflow in `MaxPoolGrad`2021-05-21

📋Vendor Advisories

2
Debian
CVE-2021-29579: tensorflow - TensorFlow is an end-to-end open source platform for machine learning. The imple...2021
Debian
CVE-2021-37674: tensorflow - TensorFlow is an end-to-end open source platform for machine learning. In affect...2021
CVE-2021-29579 — Tensorflow vulnerability | cvebase