PYSEC-2020-274

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2020-274.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2020-274
Aliases
Published
2020-09-25T19:15:00Z
Modified
2023-12-06T00:45:15.360374Z
Summary
[none]
Details

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the SparseFillEmptyRowsGrad implementation has incomplete validation of the shapes of its arguments. Although reverse_index_map_t and grad_values_t are accessed in a similar pattern, only reverse_index_map_t is validated to be of proper shape. Hence, malicious users can pass a bad grad_values_t to trigger an assertion failure in vec, causing denial of service in serving installations. The issue is patched in commit 390611e0d45c5793c7066110af37c8514e6a6c54, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1."

References

Affected packages

PyPI / tensorflow-cpu

Package

Affected ranges

Type
GIT
Repo
https://github.com/tensorflow/tensorflow
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.15.4
Introduced
2.0.0
Fixed
2.0.3
Introduced
2.1.0
Fixed
2.1.2
Introduced
2.2.0
Fixed
2.2.1
Introduced
2.3.0
Fixed
2.3.1

Affected versions

1.*

1.15.0

2.*

2.1.0
2.1.1
2.2.0
2.3.0