GHSA-93vr-9q9m-pj8p

Опубликовано: 24 мар. 2023

Источник: github

Github: Прошло ревью

CVSS3: 7.5

Описание

TensorFlow vulnerable to Out-of-Bounds Read in DynamicStitch

Impact

If the parameter indices for DynamicStitch does not match the shape of the parameter data, it can trigger an stack OOB read.

import tensorflow as tf func = tf.raw_ops.DynamicStitch para={'indices': [[0xdeadbeef], [405], [519], [758], [1015]], 'data': [[110.27793884277344], [120.29475402832031], [157.2418212890625], [157.2626953125], [188.45382690429688]]} y = func(**para)

Patches

We have patched the issue in GitHub commit ee004b18b976eeb5a758020af8880236cd707d05.

The fix will be included in TensorFlow 2.12. We will also cherrypick this commit on TensorFlow 2.11.1.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This has been reported via Google OSS VRP.

Ссылки

Пакеты

Наименование

tensorflow

pip

Затронутые версииВерсия исправления

< 2.11.1

2.11.1

Наименование

tensorflow-cpu

pip

Затронутые версииВерсия исправления

< 2.11.1

2.11.1

Наименование

tensorflow-gpu

pip

Затронутые версииВерсия исправления

< 2.11.1

2.11.1

EPSS

Процентиль: 39%

0.0017

Низкий

7.5 High

CVSS3

CVE ID

CVE-2023-25659

Дефекты

CWE-125

Связанные уязвимости

CVE-2023-25659

CVSS3: 7.5

nvd

почти 3 года назад

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, if the parameter `indices` for `DynamicStitch` does not match the shape of the parameter `data`, it can trigger an stack OOB read. A fix is included in TensorFlow version 2.12.0 and version 2.11.1.

CVE-2023-25659

CVSS3: 7.5

msrc

больше 1 года назад

Описание отсутствует

CVE-2023-25659

CVSS3: 7.5

debian

почти 3 года назад

TensorFlow is an open source platform for machine learning. Prior to v ...

EPSS

Процентиль: 39%

0.0017

Низкий

7.5 High

CVSS3

CVE ID

CVE-2023-25659

Дефекты

CWE-125