AVID-2026-R0797

Description

Division by zero in TFLite’s implementation of hashtable lookup (CVE-2021-29604)

Details

TensorFlow is an end-to-end open source platform for machine learning. The TFLite implementation of hashtable lookup is vulnerable to a division by zero error(https://github.com/tensorflow/tensorflow/blob/1a8e885b864c818198a5b2c0cbbeca5a1e833bc8/tensorflow/lite/kernels/hashtable_lookup.cc#L114-L115) An attacker can craft a model such that values’s first dimension would be 0. The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range.

Reason for inclusion in AVID: CVE-2021-29604 describes a division-by-zero vulnerability in TensorFlow Lite’s hashtable lookup. This is a software vulnerability in an AI framework used for ML models and runtimes, affecting the AI software stack. It impacts components used to build/run general-purpose AI systems (TensorFlow Lite), aligning with software supply-chain concerns in GPAI. The CVE is well-documented with references, indicating a real security issue with a defined impact.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-8rm6-75mf-7r7r
• https://github.com/tensorflow/tensorflow/commit/5117e0851348065ed59c991562c0ec80d9193db2

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2021-05-14
• Version: 0.3.3
• AVID Entry