CVE-2021-29603

LOW

TensorFlow < 2.1.4 - Out-of-bounds Write in TFLite ArgMin/ArgMax

Title source: llm
STIX 2.1

Description

TensorFlow is an end-to-end open source platform for machine learning. A specially crafted TFLite model could trigger an OOB write on heap in the TFLite implementation of `ArgMin`/`ArgMax`(https://github.com/tensorflow/tensorflow/blob/102b211d892f3abc14f845a72047809b39cc65ab/tensorflow/lite/kernels/arg_min_max.cc#L52-L59). If `axis_value` is not a value between 0 and `NumDimensions(input)`, then the condition in the `if` is never true, so code writes past the last valid element of `output_dims->data`. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.

References (2)

Core 2
Core References
Exploit, Patch, Third Party Advisory x_refsource_confirm
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-crch-j389-5f84

Scores

CVSS v3 2.5
EPSS 0.0020
EPSS Percentile 10.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Details

CWE
CWE-787
Status published
Products (4)
google/tensorflow < 2.1.4
pypi/tensorflow 0 - 2.1.4PyPI
pypi/tensorflow-cpu 0 - 2.1.4PyPI
pypi/tensorflow-gpu 0 - 2.1.4PyPI
Published May 14, 2021
Tracked Since Feb 18, 2026