{"id":"CVE-2021-37662","details":"TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can generate undefined behavior via a reference binding to nullptr in `BoostedTreesCalculateBestGainsPerFeature` and similar attack can occur in `BoostedTreesCalculateBestFeatureSplitV2`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/stats_ops.cc) does not validate the input values. We have patched the issue in GitHub commit 9c87c32c710d0b5b53dc6fd3bfde4046e1f7a5ad and in commit 429f009d2b2c09028647dd4bb7b3f6f414bbaad7. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.","aliases":["BIT-tensorflow-2021-37662","GHSA-f5cx-5wr3-5qrc","PYSEC-2021-284","PYSEC-2021-575","PYSEC-2021-773"],"modified":"2026-04-11T16:26:15.439647Z","published":"2021-08-12T21:15:08.967Z","related":["GHSA-f5cx-5wr3-5qrc","openSUSE-SU-2022:10014-1","openSUSE-SU-2024:12116-1"],"references":[{"type":"ADVISORY","url":"https://github.com/tensorflow/tensorflow/security/advisories/GHSA-f5cx-5wr3-5qrc"},{"type":"FIX","url":"https://github.com/tensorflow/tensorflow/commit/9c87c32c710d0b5b53dc6fd3bfde4046e1f7a5ad"},{"type":"FIX","url":"https://github.com/tensorflow/tensorflow/commit/429f009d2b2c09028647dd4bb7b3f6f414bbaad7"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/tensorflow/tensorflow","events":[{"introduced":"b36436b087bd8e8701ef51718179037cccdfc26e"},{"fixed":"7462dcaae1e8cfe1dfd0c62dd6083f9749a9d827"},{"introduced":"582c8d236cb079023657287c318ff26adb239002"},{"fixed":"4c0b84bf2a714bcdd18da1f1f94d533d72399d52"},{"introduced":"0"},{"last_affected":"a4dfb8d1a71385bd6d122e4f27f86dcebb96712d"},{"introduced":"0"},{"last_affected":"a5317d67e6ce6e93de18011bfdcdd4ff7aa894cf"},{"introduced":"0"},{"last_affected":"79f2d3a179ac6ea6b4c3d07b6849afad4e8730cd"},{"introduced":"0"},{"last_affected":"5368d50428b30b7c9ccd038aec65d09252d16596"},{"fixed":"429f009d2b2c09028647dd4bb7b3f6f414bbaad7"},{"fixed":"9c87c32c710d0b5b53dc6fd3bfde4046e1f7a5ad"}],"database_specific":{"versions":[{"introduced":"2.3.0"},{"fixed":"2.3.4"},{"introduced":"2.4.0"},{"fixed":"2.4.3"},{"introduced":"0"},{"last_affected":"2.5.0"},{"introduced":"0"},{"last_affected":"2.6.0-rc0"},{"introduced":"0"},{"last_affected":"2.6.0-rc1"},{"introduced":"0"},{"last_affected":"2.6.0-rc2"}]}}],"versions":["0.5.0","0.6.0","v1.1.0-rc1","v1.1.0-rc2","v1.12.1","v1.6.0-rc1","v1.9.0-rc2","v2.3.0","v2.3.1","v2.3.2","v2.3.3","v2.4.0","v2.4.1","v2.4.2","v2.5.0","v2.5.0-rc0","v2.5.0-rc1","v2.5.0-rc2","v2.5.0-rc3","v2.6.0-rc0","v2.6.0-rc1","v2.6.0-rc2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37662.json","vanir_signatures":[{"target":{"file":"tensorflow/core/kernels/boosted_trees/stats_ops.cc"},"source":"https://github.com/tensorflow/tensorflow/commit/429f009d2b2c09028647dd4bb7b3f6f414bbaad7","signature_type":"Line","deprecated":false,"signature_version":"v1","id":"CVE-2021-37662-38462702","digest":{"threshold":0.9,"line_hashes":["120053255382082576093183736243425855607","67847192020486691911259447235055945143","217513525596097279074506231341484768165","97592127381363070457709825848856806344","227631928924186871462088631571041467366","277768925155178536448567001576742013847","135427090848286891698091120670969859827","206220200170668855805063381991154143376","59060369083491920600447105757272887737","95957002393700333964069713241127786092","202630755242102138689225920140804689773","2173344943099953664648561003654445007","209068184002990857160758165105560969130","97648727031521076855307278289134066962","53897143722174894316318855672646396317","159945268917906476761494861958791123035","72240190262878917040950806227346627600","222112986861043598061752344929793983619","136299514930743798349029634524938265559","110375659552959587022483290098774229788","209635461016119812193300024148420676248","11826044401150165492084295850589338897","304197490696463704920900941722434877139","264689429350397190714269742039854867744","37371336977292537332511123854521045679","202447394377057017549267775722881093364","335609762213068293834429226753466722547","252372756218904308750076228388320497135","1753614174065524263919716142254174664","269820216721516101907286419260408780493","116017121194944385826796818496795411249","312816761056510203675337656280505000610","338940729873161624384495294119988570125","122014554682853432177087771549217944006","162113342266815539020607637459884056613"]}},{"target":{"file":"tensorflow/core/kernels/boosted_trees/stats_ops.cc"},"source":"https://github.com/tensorflow/tensorflow/commit/9c87c32c710d0b5b53dc6fd3bfde4046e1f7a5ad","signature_type":"Line","deprecated":false,"signature_version":"v1","id":"CVE-2021-37662-c7814338","digest":{"threshold":0.9,"line_hashes":["277768925155178536448567001576742013847","135427090848286891698091120670969859827","206220200170668855805063381991154143376","59060369083491920600447105757272887737","135427090848286891698091120670969859827","206220200170668855805063381991154143376","59060369083491920600447105757272887737","43575509828206003789265434553760258884"]}}],"vanir_signatures_modified":"2026-04-11T16:26:15Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}