CVE-2022-29197

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-29197

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-29197.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-29197

Aliases

Related

GHSA-hrg5-737c-2p56

Published

2022-05-20T22:16:40Z

Modified

2025-09-19T14:55:46.233876Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.raw_ops.UnsortedSegmentJoin does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service attack. The code assumes num_segments is a scalar but there is no validation for this before accessing its value. Versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4 contain a patch for this issue.

References

Affected packages

Git / github.com/tensorflow/tensorflow

Affected ranges

Type: GIT
Repo: https://github.com/tensorflow/tensorflow
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

0516d4d8bced506cae97dc3cb45dbd2fe4311f26

Fixed

13d38a07ce9143e044aa737cfd7bb759d0e9b400

Fixed

33ed2b11cb8e879d86c371700e6573db1814a69e

Fixed

8a20d54a3c1bfa38c03ea99a2ad3c1b0a45dfa95

Fixed

dd7b8a3c1714d0052ce4b4a2fd8dcef927439a24

Affected versions

0.*

0.12.0-rc0

0.12.0-rc1

0.12.1

0.5.0

0.6.0

v0.*

v0.10.0

v0.10.0rc0

v0.11.0

v0.11.0rc0

v0.11.0rc1

v0.11.0rc2

v0.12.0

v0.7.0

v0.7.1

v0.8.0rc0

v0.9.0

v0.9.0rc0

v1.*

v1.0.0

v1.0.0-alpha

v1.0.0-rc0

v1.0.0-rc1

v1.0.0-rc2

v1.1.0

v1.1.0-rc0

v1.1.0-rc1

v1.1.0-rc2

v1.12.0

v1.12.0-rc0

v1.12.0-rc1

v1.12.0-rc2

v1.12.1

v1.2.0

v1.2.0-rc0

v1.2.0-rc1

v1.2.0-rc2

v1.3.0-rc0

v1.3.0-rc1

v1.5.0

v1.5.0-rc0

v1.5.0-rc1

v1.6.0

v1.6.0-rc0

v1.6.0-rc1

v1.7.0

v1.7.0-rc0

v1.7.0-rc1

v1.8.0

v1.8.0-rc0

v1.8.0-rc1

v1.9.0

v1.9.0-rc0

v1.9.0-rc1

v1.9.0-rc2

v2.*

v2.6.0

v2.6.0-rc0

v2.6.0-rc1

v2.6.0-rc2

v2.6.1

v2.6.2

v2.6.3

v2.7.0

v2.7.0-rc0

v2.7.0-rc1

v2.7.1

v2.8.0

v2.8.0-rc0

v2.8.0-rc1

v2.9.0-rc0

v2.9.0-rc1

v2.9.0-rc2

Database specific

{
    "vanir_signatures": [
        {
            "target": {
                "file": "tensorflow/core/kernels/unsorted_segment_join_op.cc"
            },
            "id": "CVE-2022-29197-f09a37d4",
            "signature_version": "v1",
            "digest": {
                "line_hashes": [
                    "55500717327808866237607697274156619139",
                    "136683916953844256548644583323253890416",
                    "209342464687596159271925112184219903744",
                    "139402845272642927165056975613293908924"
                ],
                "threshold": 0.9
            },
            "source": "https://github.com/tensorflow/tensorflow/commit/13d38a07ce9143e044aa737cfd7bb759d0e9b400",
            "deprecated": false,
            "signature_type": "Line"
        }
    ]
}