CVE-2021-41219 — Access of Uninitialized Pointer in Tensorflow

CWE-824 — Access of Uninitialized Pointer CWE-125 — Out-of-bounds Read6 documents5 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 94.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tensorflow Google Tensorflow Intel Optimization FOR Tensorflow

Timeline

PublishedNov 5

Latest updateNov 10

Description

TensorFlow is an open source platform for machine learning. In affected versions the code for sparse matrix multiplication is vulnerable to undefined behavior via binding a reference to `nullptr`. This occurs whenever the dimensions of `a` or `b` are 0 or less. In the case on one of these is 0, an empty output tensor should be allocated (to conserve the invariant that output tensors are always allocated when the operation is successful) but nothing should be written to it (that is, we should ret…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDgoogle/tensorflow2.5.0 — 2.5.2+2

▶CVEListV5tensorflow/tensorflow< 2.4.4+2

▶PyPIintel/optimization_for_tensorflow2.5.0 — 2.5.2+4

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

Undefined behavior via `nullptr` reference binding in sparse matrix multiplication↗2021-11-10

▶

OSV

Undefined behavior via `nullptr` reference binding in sparse matrix multiplication↗2021-11-10

▶

CVEList

Undefined behavior via `nullptr` reference binding in sparse matrix multiplication↗2021-11-05

▶

OSV

CVE-2021-41219: TensorFlow is an open source platform for machine learning↗2021-11-05

▶

📋Vendor Advisories

Debian

CVE-2021-41219: tensorflow - TensorFlow is an open source platform for machine learning. In affected versions...↗2021

▶