google tensorflow 空指针解引用

CVE编号

CVE-2021-37648

利用情况

暂无

补丁情况

N/A

披露时间

2021-08-13

漏洞描述

TensorFlow is an end-to-end open source platform for machine learning. In affected versions the code for `tf.raw_ops.SaveV2` does not properly validate the inputs and an attacker can trigger a null pointer dereference. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/save_restore_v2_ops.cc) uses `ValidateInputs` to check that the input arguments are valid. This validation would have caught the illegal state represented by the reproducer above. However, the validation uses `OP_REQUIRES` which translates to setting the `Status` object of the current `OpKernelContext` to an error status, followed by an empty `return` statement which just terminates the execution of the function it is present in. However, this does not mean that the kernel execution is finalized: instead, execution continues from the next line in `Compute` that follows the call to `ValidateInputs`. This is equivalent to lacking the validation. We have patched the issue in GitHub commit 9728c60e136912a12d99ca56e106b7cce7af5986. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://github.com/tensorflow/tensorflow/commit/9728c60e136912a12d99ca56e106b...
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-wp77-4gmm-7cq8

受影响软件情况

#	类型	厂商	产品	版本	影响面
1
	运行在以下环境
	应用	google	tensorflow	*	From (including) 2.3.0	Up to (excluding) 2.3.4
	运行在以下环境
	应用	google	tensorflow	*	From (including) 2.4.0	Up to (excluding) 2.4.3
	运行在以下环境
	应用	google	tensorflow	2.5.0	-
	运行在以下环境
	应用	google	tensorflow	2.6.0	-

CVSS3评分 7.8

• 攻击路径 本地
• 攻击复杂度 低
• 权限要求 低
• 影响范围 未更改
• 用户交互 无
• 可用性 高
• 保密性 高
• 完整性 高

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CWE-ID 漏洞类型 CWE-476 空指针解引用