CVE-2022-35940 — Integer Overflow or Wraparound in Tensorflow

CWE-190 — Integer Overflow or Wraparound6 documents6 sources

Severity

7.5HIGHNVD

CNA5.9

EPSS

0.2%

top 58.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tensorflow Google Tensorflow Intel Optimization FOR Tensorflow

Timeline

PublishedSep 16

Description

TensorFlow is an open source platform for machine learning. The `RaggedRangOp` function takes an argument `limits` that is eventually used to construct a `TensorShape` as an `int64`. If `limits` is a very large float, it can overflow when converted to an `int64`. This triggers an `InvalidArgument` but also throws an abort signal that crashes the program. We have patched the issue in GitHub commit 37cefa91bee4eace55715eeef43720b958a01192. The fix will be included in TensorFlow 2.10.0. We will als…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶NVDgoogle/tensorflow2.7.0 — 2.7.2+3

▶CVEListV5tensorflow/tensorflow< 2.7.2+2

▶PyPIintel/optimization_for_tensorflow2.8.0 — 2.8.1+2

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

CVEList

Int overflow in `RaggedRangeOp` in Tensoflow↗2022-09-16

▶

OSV

TensorFlow vulnerable to Int overflow in `RaggedRangeOp`↗2022-09-16

▶

GHSA

TensorFlow vulnerable to Int overflow in `RaggedRangeOp`↗2022-09-16

▶

📋Vendor Advisories

Oracle

Oracle Oracle Fusion Middleware Risk Matrix: SSL Module (Apache Portable Runtime) — CVE-2021-35940↗2022-07-15

▶

Debian

CVE-2022-35940: tensorflow - TensorFlow is an open source platform for machine learning. The `RaggedRangOp` f...↗2022

▶