CVE-2021-29543

LOW

TensorFlow < 2.1.4 - Denial of Service via CTCGreedyDecoder CHECK-LT Assertion

Title source: llm

Description

TensorFlow is an end-to-end open source platform for machine learning. An attacker can trigger a denial of service via a `CHECK`-fail in `tf.raw_ops.CTCGreedyDecoder`. This is because the implementation(https://github.com/tensorflow/tensorflow/blob/1615440b17b364b875eb06f43d087381f1460a65/tensorflow/core/kernels/ctc_decoder_ops.cc#L37-L50) has a `CHECK_LT` inserted to validate some invariants. When this condition is false, the program aborts, instead of returning a valid error to the user. This abnormal termination can be weaponized in denial of service attacks. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.

References (2)

Core 2

Core References

Exploit, Patch, Third Party Advisory x_refsource_confirm

https://github.com/tensorflow/tensorflow/security/advisories/GHSA-fphq-gw9m-ghrv

Patch, Third Party Advisory x_refsource_misc

https://github.com/tensorflow/tensorflow/commit/ea3b43e98c32c97b35d52b4c66f9107452ca8fb2

Scores

CVSS v3 2.5

EPSS 0.0019

EPSS Percentile 8.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-617

Status published

Products (4)

google/tensorflow < 2.1.4

pypi/tensorflow 0 - 2.1.4PyPI

pypi/tensorflow-cpu 0 - 2.1.4PyPI

pypi/tensorflow-gpu 0 - 2.1.4PyPI

Published May 14, 2021

Tracked Since Feb 18, 2026