CVE-2020-15200

In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the values in the `splits` tensor generate a valid partitioning of the `values` tensor. Thus, the code sets up conditions to cause a heap buffer overflow. A `BatchedMap` is equivalent to a vector where each element is a hashmap. However, if the first element of `splits_values` is not 0, `batch_idx` will never be 1, hence there will be no hashmap at index 0 in `per_batch_counts`. Trying to access that in the user code results in a segmentation fault. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1.

CVSS v3 5.9 MEDIUM
CVSS v2.0 4.3 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://github.com/tensorflow/tensorflow/commit/3cbb917b4714766030b28eba9fb41bb97ce9ee02	Patch Third Party Advisory
https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1	Third Party Advisory
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-x7rp-74x2-mjf3	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:google:tensorflow:2.3.0:*:*:*:-:*:*:*

History

18 Nov 2021, 17:24

Type	Values Removed	Values Added
CWE	CWE-20 CWE-122	CWE-787

17 Aug 2021, 13:21

Type	Values Removed	Values Added
CPE	cpe:2.3:a:tensorflow:tensorflow:2.3.0::::-:::	cpe:2.3:a:google:tensorflow:2.3.0::::-:::

Information

Published : 2020-09-25 19:15

Updated : 2024-02-04 21:23

NVD link : CVE-2020-15200

Mitre link : CVE-2020-15200

CVE.ORG link : CVE-2020-15200

JSON object : View

Products Affected

google

tensorflow

CWE

CWE-787

Out-of-bounds Write

CWE-122

Heap-based Buffer Overflow

CWE-20

Improper Input Validation

{"id": "CVE-2020-15200", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2020-09-25T19:15:15.260", "references": [{"url": "https://github.com/tensorflow/tensorflow/commit/3cbb917b4714766030b28eba9fb41bb97ce9ee02", "tags": ["Patch", "Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1", "tags": ["Third Party Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-x7rp-74x2-mjf3", "tags": ["Exploit", "Third Party Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-122"}, {"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not validate that the input arguments form a valid ragged tensor. In particular, there is no validation that the values in the `splits` tensor generate a valid partitioning of the `values` tensor. Thus, the code sets up conditions to cause a heap buffer overflow. A `BatchedMap` is equivalent to a vector where each element is a hashmap. However, if the first element of `splits_values` is not 0, `batch_idx` will never be 1, hence there will be no hashmap at index 0 in `per_batch_counts`. Trying to access that in the user code results in a segmentation fault. The issue is patched in commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 and is released in TensorFlow version 2.3.1."}, {"lang": "es", "value": "En Tensorflow anteriores a la versi\u00f3n 2.3.1, la implementaci\u00f3n de \"RaggedCountSparseOutput\" no comprueba que los argumentos de entrada formen un tensor irregular v\u00e1lido. En particular, no existe comprobaci\u00f3n de que los valores en el tensor \"splits\" generen una partici\u00f3n v\u00e1lida del tensor \"values\". Por lo tanto, el c\u00f3digo establece las condiciones para causar un desbordamiento del b\u00fafer de la pila. Un \"BatchedMap\" es equivalente a un vector donde cada elemento es un mapa de hash. Sin embargo, si el primer elemento de \"splits_values\" no es 0, \"batch_idx\" nunca ser\u00e1 1, por lo que no habr\u00e1 un hashmap en el \u00edndice 0 en \"per_batch_counts\". Intentar acceder a eso en el c\u00f3digo de usuario resulta en un fallo de segmentaci\u00f3n. El problema es parcheado en el commit 3cbb917b4714766030b28eba9fb41bb97ce9ee02 y es publicado en TensorFlow versi\u00f3n 2.3.1"}], "lastModified": "2021-11-18T17:24:30.770", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:tensorflow:2.3.0:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "D0A7B69E-9388-48F0-B744-49453EBAF5D5"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}