Description
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, if a TFLite saved model uses the same tensor as both input and output of an operator, then, depending on the operator, we can observe a segmentation fault or just memory corruption. We have patched the issue in d58c96946b and will release patch releases for all versions between 1.15 and 2.3. We recommend users to upgrade to TensorFlow 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.
References (4)
Core 4
Core References
Third Party Advisory x_refsource_misc
https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1
Exploit, Third Party Advisory x_refsource_confirm
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-x9j7-x98r-r4w2
Patch, Third Party Advisory x_refsource_misc
https://github.com/tensorflow/tensorflow/commit/d58c96946b2880991d63d1dacacb32f0a4dfa453
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00065.html
Scores
CVSS v3
6.5
EPSS
0.0033
EPSS Percentile
55.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
Details
CWE
CWE-20
CWE-787
Status
published
Products (5)
google/tensorflow
< 1.15.4
opensuse/leap
15.2
pypi/tensorflow
0 - 1.15.4PyPI
pypi/tensorflow-cpu
0 - 1.15.4PyPI
pypi/tensorflow-gpu
0 - 1.15.4PyPI
Published
Sep 25, 2020
Tracked Since
Feb 18, 2026