GHSA-rrfp-j2mp-hq9c

Опубликовано: 13 нояб. 2020

Источник: github

Github: Прошло ревью

CVSS4: 7.1

CVSS3: 5.9

Описание

Segfault in tf.quantization.quantize_and_dequantize

Impact

An attacker can pass an invalid axis value to tf.quantization.quantize_and_dequantize:

tf.quantization.quantize_and_dequantize( input=[2.5, 2.5], input_min=[0,0], input_max=[1,1], axis=10)

This results in accessing a dimension outside the rank of the input tensor in the C++ kernel implementation:

const int depth = (axis_ == -1) ? 1 : input.dim_size(axis_);

However, dim_size only does a DCHECK to validate the argument and then uses it to access the corresponding element of an array:

int64 TensorShapeBase<Shape>::dim_size(int d) const { DCHECK_GE(d, 0); DCHECK_LT(d, dims()); DoStuffWith(dims_[d]); }

Since in normal builds, DCHECK-like macros are no-ops, this results in segfault and access out of bounds of the array.

Patches

We have patched the issue in eccb7ec454e6617738554a255d77f08e60ee0808 and will release TensorFlow 2.4.0 containing the patch. TensorFlow nightly packages after this commit will also have the issue resolved.

For more information

Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.

Attribution

This vulnerability has been reported in #42105

Ссылки

Пакеты

Наименование

tensorflow

pip

Затронутые версииВерсия исправления

< 2.4.0

2.4.0

Наименование

tensorflow-cpu

pip

Затронутые версииВерсия исправления

< 2.4.0

2.4.0

Наименование

tensorflow-gpu

pip

Затронутые версииВерсия исправления

< 2.4.0

2.4.0

EPSS

Процентиль: 47%

0.00239

Низкий

7.1 High

CVSS4

5.9 Medium

CVSS3

CVE ID

CVE-2020-15265

Дефекты

CWE-125

Связанные уязвимости

CVE-2020-15265

CVSS3: 5.9

nvd

больше 5 лет назад

In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.quantization.quantize_and_dequantize`. This results in accessing a dimension outside the rank of the input tensor in the C++ kernel implementation. However, dim_size only does a DCHECK to validate the argument and then uses it to access the corresponding element of an array. Since in normal builds, `DCHECK`-like macros are no-ops, this results in segfault and access out of bounds of the array. The issue is patched in eccb7ec454e6617738554a255d77f08e60ee0808 and TensorFlow 2.4.0 will be released containing the patch. TensorFlow nightly packages after this commit will also have the issue resolved.

CVE-2020-15265

CVSS3: 5.9

debian

больше 5 лет назад

In Tensorflow before version 2.4.0, an attacker can pass an invalid `a ...

EPSS

Процентиль: 47%

0.00239

Низкий

7.1 High

CVSS4

5.9 Medium

CVSS3

CVE ID

CVE-2020-15265

Дефекты

CWE-125