CVE-2021-41216

TensorFlow is an open source platform for machine learning. In affected versions the shape inference function for Transpose is vulnerable to a heap buffer overflow. This occurs whenever perm contains negative elements. The shape inference function does not validate that the indices in perm are all valid. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

Published: Nov 6, 2021
Updated: May 9, 2024
CVE: CVE-2021-41216
GHSA: GHSA-3ff2-r28g-w7h9
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Affected Software
References

Software	From	Fixed in
google / tensorflow	2.6.0	2.6.1
google / tensorflow	2.5.0	2.5.2
google / tensorflow	2.7.0-rc1	2.7.0-rc1.x
google / tensorflow	2.7.0-rc0	2.7.0-rc0.x
google / tensorflow	2.4.0	2.4.4
tensorflow	2.6.0	2.6.1
tensorflow	2.5.0	2.5.2
tensorflow	-	2.4.4
tensorflow-cpu	2.6.0	2.6.1
tensorflow-cpu	2.5.0	2.5.2
tensorflow-cpu	-	2.4.4
tensorflow-gpu	2.6.0	2.6.1
tensorflow-gpu	2.5.0	2.5.2
tensorflow-gpu	-	2.4.4

Vulnerability Database

290,020

CVE-2021-41216