← back
CVE-2020-15194

Denial of Service in Tensorflow

CVSS 5.3 MEDIUMEPSS 1.0%CWE-20CWE-617
In short

TensorFlow's SparseFillEmptyRowsGrad function doesn't properly validate one of its input parameters, allowing attackers to send malformed data that crashes the service and causes it to stop working.

Technical detail

The SparseFillEmptyRowsGrad operation in TensorFlow lacks adequate input validation for the grad_values_t parameter; an attacker can supply a tensor with incorrect shape, triggering an assertion failure that leads to denial of service in TensorFlow Serving instances. The vulnerability affects TensorFlow versions prior to 1.15.4, 2.0.3, 2.1.2, 2.2.1, and 2.3.1.

Summary generated and translated by AI from the official description.
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmptyRowsGrad` implementation has incomplete validation of the shapes of its arguments. Although `reverse_index_map_t` and `grad_values_t` are accessed in a similar pattern, only `reverse_index_map_t` is validated to be of proper shape. Hence, malicious users can pass a bad `grad_values_t` to trigger an assertion failure in `vec`, causing denial of service in serving installations. The issue is patched in commit 390611e0d45c5793c7066110af37c8514e6a6c54, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1."
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
tensorflow · tensorflow

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00065.htmlhttps://github.com/tensorflow/tensorflow/commit/390611e0d45c5793c7066110af37c8514e6a6c54https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1https://github.com/tensorflow/tensorflow/security/advisories/GHSA-9mqp-7v2h-2382