c06650b697
GitHub does not insert automatic links and smart code snippets in these files, so we have to do it manually. PiperOrigin-RevId: 333195707 Change-Id: I1e2fed8ff207fbfce6eb8fb2b910d12bcab4100c
43 lines
1.6 KiB
Markdown
43 lines
1.6 KiB
Markdown
## TFSA-2020-018: Heap buffer overflow due to invalid indices in SparseCountSparseOutput
|
|
|
|
### CVE Number
|
|
CVE-2020-15198
|
|
|
|
### Impact
|
|
The `SparseCountSparseOutput` implementation does not validate that the input
|
|
arguments form a valid sparse tensor. In particular, there is no validation that
|
|
the `indices` tensor has the same shape as the `values` one. The values in these
|
|
tensors are always [accessed in
|
|
parallel](https://github.com/tensorflow/tensorflow/blob/0e68f4d3295eb0281a517c3662f6698992b7b2cf/tensorflow/core/kernels/count_ops.cc#L193-L195):
|
|
```cc
|
|
for (int idx = 0; idx < num_values; ++idx) {
|
|
int batch = is_1d ? 0 : indices_values(idx, 0);
|
|
const auto& value = values_values(idx);
|
|
// ...
|
|
}
|
|
```
|
|
|
|
Thus, a shape mismatch can result in accesses outside the bounds of heap
|
|
allocated buffers.
|
|
|
|
### Vulnerable Versions
|
|
TensorFlow 2.3.0.
|
|
|
|
### Patches
|
|
We have patched the issue in
|
|
[3cbb917b4714766030b28eba9fb41bb97ce9ee02](https://github.com/tensorflow/tensorflow/commit/3cbb917b4714766030b28eba9fb41bb97ce9ee02)
|
|
and will release a patch release.
|
|
|
|
We recommend users to upgrade to TensorFlow 2.3.1.
|
|
|
|
### For more information
|
|
Please consult [our security
|
|
guide](https://github.com/tensorflow/tensorflow/blob/master/SECURITY.md) for
|
|
more information regarding the security model and how to contact us with issues
|
|
and questions.
|
|
|
|
### Attribution
|
|
This vulnerability has been discovered through a variant analysis of [a
|
|
vulnerability reported by members of the Aivul Team from Qihoo
|
|
360](https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2020-015.md).
|