CVE-2022-35984

Description

TensorFlow is an open source platform for machine learning. `ParameterizedTruncatedNormal` assumes `shape` is of type `int32`. A valid `shape` of type `int64` results in a mismatched type `CHECK` fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 72180be03447a10810edca700cbc9af690dfeb51. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

Related CPE's

a google tensorflow ********

a google tensorflow 2.10 rc1 ******

a google tensorflow 2.10 rc2 ******

a google tensorflow 2.10 rc3 ******

a google tensorflow 2.10 rc0 ******

a google tensorflow ********

References

https://github.com/tensorflow/tensorflow/commit/72180be03447a10810edca700cbc9af690dfeb51

PatchThird Party Advisory

https://github.com/tensorflow/tensorflow/security/advisories/GHSA-p2xf-8hgm-hpw5

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io