CVE-2021-37692 : TensorFlow is an end-to-end open source platform for machine learning. In affect

TensorFlow is an end-to-end open source platform for machine learning. In affected versions under certain conditions, Go code can trigger a segfault in string deallocation. For string tensors, `C.TF_TString_Dealloc` is called during garbage collection within a finalizer function. However, tensor structure isn't checked until encoding to avoid a performance penalty. The current method for dealloc assumes that encoding succeeded, but segfaults when a string tensor is garbage collected whose encoding failed (e.g., due to mismatched dimensions). To fix this, the call to set the finalizer function is deferred until `NewTensor` returns and, if encoding failed for a string tensor, deallocs are determined based on bytes written. We have patched the issue in GitHub commit 8721ba96e5760c229217b594f6d2ba332beedf22. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, which is the other affected version.

Published 2021-08-12 23:15:09

Updated 2021-08-31 16:23:53

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: Input validation

Products affected by CVE-2021-37692

Google » Tensorflow
Versions from including (>=) 2.5.0 and before (<) 2.6.0
cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-37692

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 19 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-37692

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:N/A:P	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	GitHub, Inc.
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-37692

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: security-advisories@github.com (Primary)

References for CVE-2021-37692

https://github.com/tensorflow/tensorflow/pull/50508

[Go] Fix segfault on string tensors with mismatched dimensions by wamuir · Pull Request #50508 · tensorflow/tensorflow · GitHub
Patch;Third Party Advisory
https://github.com/tensorflow/tensorflow/commit/8721ba96e5760c229217b594f6d2ba332beedf22

Merge pull request #50508 from wamuir:fix-tstring-dealloc · tensorflow/tensorflow@8721ba9 · GitHub
Patch;Third Party Advisory
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cmgw-8vpc-rc59

Segfault on strings tensors with mistmatched dimensions, due to Go code · Advisory · tensorflow/tensorflow · GitHub
Third Party Advisory

Jump to

Vulnerability Details : CVE-2021-37692

Products affected by CVE-2021-37692

Exploit prediction scoring system (EPSS) score for CVE-2021-37692

CVSS scores for CVE-2021-37692

CWE ids for CVE-2021-37692

References for CVE-2021-37692