Lucene search
GoogleOSV:GHSA-27QF-JWM8-G7F3HistoryAug 25, 2021 - 2:39 p.m.
FPE in LSH in TFLite
2021-08-2514:39:17
Google
osv.dev
32
tflite
lsh
fpe
division by zero
github
tensorflow
security guide
vulnerability
baidu security
EPSS
0
Percentile
12.6%
Impact
An attacker can craft a TFLite model that would trigger a division by zero error in LSH implementation.
int RunningSignBit(const TfLiteTensor* input, const TfLiteTensor* weight,
float seed) {
int input_item_bytes = input->bytes / SizeOfDimension(input, 0);
// ...
}
There is no check that the first dimension of the input is non zero.
Patches
We have patched the issue in GitHub commit 0575b640091680cfb70f4dd93e70658de43b94f9.
The fix will be included in TensorFlow 2.6.0. We will also cherrypick thiscommit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.
For more information
Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.
Attribution
This vulnerability has been reported by Yakun Zhang of Baidu Security.
Related
prion
prion
Design/Logic Flaw
2021-08-12 23:15:00
github
github
FPE in LSH in TFLite
2021-08-25 14:39:17
cnvd
cnvd
Google TensorFlow Denial of Service Vulnerability (CNVD-2021-63079)
2021-08-13 00:00:00
cve
cve
CVE-2021-37691
2021-08-12 23:15:08
osv
osv
cvelist
cvelist
CVE-2021-37691 Division by zero in LSH in TensorFlow Lite
2021-08-12 22:25:11
nvd
nvd
CVE-2021-37691
2021-08-12 23:15:08
nessus
nessus
openSUSE 15 Security Update : tensorflow2 (openSUSE-SU-2022:10014-1)
2022-06-19 00:00:00
suse
suse
Security update for tensorflow2 (moderate)
2022-06-18 00:00:00
