CVE-2021-41203: Missing validation during checkpoint loading
(updated )
An attacker can trigger undefined behavior, integer overflows, segfaults and CHECK-fail crashes if they can change saved checkpoints from outside of TensorFlow.
This is because the checkpoints loading infrastructure is missing validation for invalid file formats.
References
- github.com/advisories/GHSA-7pxj-m4jf-r6h2
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-613.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-811.yaml
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-396.yaml
- github.com/tensorflow/tensorflow
- github.com/tensorflow/tensorflow/commit/368af875869a204b4ac552b9ddda59f6a46a56ec
- github.com/tensorflow/tensorflow/commit/abcced051cb1bd8fb05046ac3b6023a7ebcc4578
- github.com/tensorflow/tensorflow/commit/b619c6f865715ca3b15ef1842b5b95edbaa710ad
- github.com/tensorflow/tensorflow/commit/e8dc63704c88007ee4713076605c90188d66f3d2
- github.com/tensorflow/tensorflow/security/advisories/GHSA-7pxj-m4jf-r6h2
- nvd.nist.gov/vuln/detail/CVE-2021-41203
Code Behaviors & Features
Detect and mitigate CVE-2021-41203 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →