{"id":"PYSEC-2022-68","details":"Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations. Both `embedding_size` and `lookup_size` are products of values provided by the user. Hence, a malicious user could trigger overflows in the multiplication. In certain scenarios, this can then result in heap OOB read/write. Users are advised to upgrade to a patched version.","aliases":["BIT-tensorflow-2022-23559","CVE-2022-23559","GHSA-98p5-x8x4-c9m5","PYSEC-2022-123"],"modified":"2023-12-06T01:01:59.623619Z","published":"2022-02-04T23:15:00Z","references":[{"type":"WEB","url":"https://github.com/tensorflow/tensorflow/blob/ca6f96b62ad84207fbec580404eaa7dd7403a550/tensorflow/lite/kernels/embedding_lookup_sparse.cc#L179-L189"},{"type":"ADVISORY","url":"https://github.com/tensorflow/tensorflow/security/advisories/GHSA-98p5-x8x4-c9m5"},{"type":"FIX","url":"https://github.com/tensorflow/tensorflow/commit/a4e401da71458d253b05e41f28637b65baf64be4"},{"type":"FIX","url":"https://github.com/tensorflow/tensorflow/commit/1de49725a5fc4e48f1a3b902ec3599ee99283043"},{"type":"FIX","url":"https://github.com/tensorflow/tensorflow/commit/f19be71717c497723ba0cea0379e84f061a75e01"}],"affected":[{"package":{"name":"tensorflow-cpu","ecosystem":"PyPI","purl":"pkg:pypi/tensorflow-cpu"},"ranges":[{"type":"GIT","repo":"https://github.com/tensorflow/tensorflow","events":[{"introduced":"0"},{"fixed":"a4e401da71458d253b05e41f28637b65baf64be4"},{"fixed":"1de49725a5fc4e48f1a3b902ec3599ee99283043"},{"fixed":"f19be71717c497723ba0cea0379e84f061a75e01"}]},{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.5.3"},{"introduced":"2.6.0"},{"fixed":"2.6.3"}]}],"versions":["1.15.0","2.1.0","2.1.1","2.1.2","2.1.3","2.1.4","2.2.0","2.2.1","2.2.2","2.2.3","2.3.0","2.3.1","2.3.2","2.3.3","2.3.4","2.4.0","2.4.1","2.4.2","2.4.3","2.4.4","2.5.0","2.5.1","2.5.2","2.6.0","2.6.1","2.6.2"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/tensorflow-cpu/PYSEC-2022-68.yaml"}}],"schema_version":"1.7.3"}