—

PYSEC-2020-126

Details

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, by controlling the `fill` argument of tf.strings.as_string, a malicious attacker is able to trigger a format string vulnerability due to the way the internal format use in a `printf` call is constructed. This may result in segmentation fault. The issue is patched in commit 33be22c65d86256e6826666662e40dbdfe70ee83, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / tensorflow

Introduced in: 0 Fixed in: 33be22c65d86256e6826666662e40dbdfe70ee83

Fix pip install --upgrade 'tensorflow>=33be22c65d86256e6826666662e40dbdfe70ee83'

References

https://github.com/tensorflow/tensorflow/commit/33be22c65d86256e6826666662e40dbdfe70ee83 [FIX]
https://github.com/tensorflow/tensorflow/releases/tag/v2.3.1 [WEB]
https://github.com/tensorflow/tensorflow/security/advisories/GHSA-xmq7-7fxm-rr79 [ADVISORY]
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00065.html [WEB]