CVE-2022-29195

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of `tf.raw_ops.StagePeek` does not fully validate the input arguments. This results in a `CHECK`-failure which can be used to trigger a denial of service attack. The code assumes `index` is a scalar but there is no validation for this before accessing its value. Versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4 contain a patch for this issue.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.7.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.8.0:-:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.8.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.8.0:rc1:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.9.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.9.0:rc1:*:*:*:*:*:*

History

26 May 2022, 23:36

Type Values Removed Values Added
CPE cpe:2.3:a:google:tensorflow:2.8.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.7.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:*:*:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.9.0:rc1:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.8.0:rc1:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.9.0:rc0:*:*:*:*:*:*
cpe:2.3:a:google:tensorflow:2.8.0:-:*:*:*:*:*:*
References (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.6.4 - (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.6.4 - Release Notes, Third Party Advisory
References (MISC) https://github.com/tensorflow/tensorflow/commit/cebe3c45d76357d201c65bdbbf0dbe6e8a63bbdb - (MISC) https://github.com/tensorflow/tensorflow/commit/cebe3c45d76357d201c65bdbbf0dbe6e8a63bbdb - Patch, Third Party Advisory
References (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.9.0 - (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.9.0 - Release Notes, Third Party Advisory
References (MISC) https://github.com/tensorflow/tensorflow/blob/f3b9bf4c3c0597563b289c0512e98d4ce81f886e/tensorflow/core/kernels/stage_op.cc#L26 - (MISC) https://github.com/tensorflow/tensorflow/blob/f3b9bf4c3c0597563b289c0512e98d4ce81f886e/tensorflow/core/kernels/stage_op.cc#L26 - Exploit, Third Party Advisory
References (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.8.1 - (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.8.1 - Release Notes, Third Party Advisory
References (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.7.2 - (MISC) https://github.com/tensorflow/tensorflow/releases/tag/v2.7.2 - Release Notes, Third Party Advisory
References (CONFIRM) https://github.com/tensorflow/tensorflow/security/advisories/GHSA-h48f-q7rw-hvr7 - (CONFIRM) https://github.com/tensorflow/tensorflow/security/advisories/GHSA-h48f-q7rw-hvr7 - Release Notes, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 2.1
v3 : 5.5

20 May 2022, 22:59

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-20 22:16

Updated : 2024-02-04 22:29


NVD link : CVE-2022-29195

Mitre link : CVE-2022-29195

CVE.ORG link : CVE-2022-29195


JSON object : View

Products Affected

google

  • tensorflow
CWE
CWE-20

Improper Input Validation