CVE-2022-29208 — Out-of-bounds Write in Tensorflow

CWE-787 — Out-of-bounds Write5 documents5 sources

Severity

7.1HIGHNVD

EPSS

0.1%

top 70.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tensorflow Google Tensorflow Intel Optimization FOR Tensorflow

Timeline

PublishedMay 20

Latest updateMay 24

Description

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of `tf.raw_ops.EditDistance` has incomplete validation. Users can pass negative values to cause a segmentation fault based denial of service. In multiple places throughout the code, one may compute an index for a write operation. However, the existing validation only checks against the upper bound of the array. Hence, it is possible to write before the array by massagi…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages3 packages

▶NVDgoogle/tensorflow2.7.0 — 2.7.2+4

▶CVEListV5tensorflow/tensorflow< 2.6.4+3

▶PyPIintel/optimization_for_tensorflow2.7.0 — 2.7.2+2

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Segfault and OOB write due to incomplete validation in `EditDistance` in TensorFlow↗2022-05-24

▶

GHSA

Segfault and OOB write due to incomplete validation in `EditDistance` in TensorFlow↗2022-05-24

▶

CVEList

Segfault and Out-of-bounds Write write due to incomplete validation in TensorFlow↗2022-05-20

▶

📋Vendor Advisories

Debian

CVE-2022-29208: tensorflow - TensorFlow is an open source platform for machine learning. Prior to versions 2....↗2022

▶