Headline
GHSA-g9fm-r5mm-rf9f: `CHECK_EQ` fail via input in `SparseMatrixNNZ`
Impact
An input sparse_matrix that is not a matrix with a shape with rank 0 will trigger a CHECK fail in tf.raw_ops.SparseMatrixNNZ.
import tensorflow as tf
tf.raw_ops.SparseMatrixNNZ(sparse_matrix=[])
Patches
We have patched the issue in GitHub commit f856d02e5322821aad155dad9b3acab1e9f5d693.
The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.
For more information
Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.
Attribution
This vulnerability has been reported by Kang Hong Jin
`CHECK_EQ` fail via input in `SparseMatrixNNZ`
Moderate severity GitHub Reviewed Published Nov 21, 2022 in tensorflow/tensorflow • Updated Nov 21, 2022
Package
pip tensorflow (pip)
Affected versions
< 2.8.4
>= 2.9.0, < 2.9.3
>= 2.10.0, < 2.10.1
Patched versions
2.8.4
2.9.3
2.10.1
< 2.8.4
>= 2.9.0, < 2.9.3
>= 2.10.0, < 2.10.1
< 2.8.4
>= 2.9.0, < 2.9.3
>= 2.10.0, < 2.10.1
Description
Severity
CVSS base metrics
User interaction
Required
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
Weaknesses
GHSA ID
GHSA-g9fm-r5mm-rf9f
Source code
Related news
TensorFlow is an open source platform for machine learning. An input `sparse_matrix` that is not a matrix with a shape with rank 0 will trigger a `CHECK` fail in `tf.raw_ops.SparseMatrixNNZ`. We have patched the issue in GitHub commit f856d02e5322821aad155dad9b3acab1e9f5d693. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.