AVID-2026-R0889

Description

Crash in max_pool3d when size argument is 0 or negative (CVE-2021-41196)

Details

TensorFlow is an open source platform for machine learning. In affected versions the Keras pooling layers can trigger a segfault if the size of the pool is 0 or if a dimension is negative. This is due to the TensorFlow’s implementation of pooling operations where the values in the sliding window are not checked to be strictly positive. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

Reason for inclusion in AVID: CVE-2021-41196 describes a software vulnerability in TensorFlow (max_pool3d) causing a crash/segfault when pool size is 0 or negative. TensorFlow is a core AI framework/library used in ML pipelines to build, train, deploy and serve AI systems. This directly affects software components in the AI stack (dependencies/runtimes) and thus constitutes a software supply chain issue for general-purpose AI systems. The CVE includes explicit description of the vulnerability, affected versions, and references, plus notes on fixes in TensorFlow releases, satisfying evidence requirements.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-m539-j985-hcr8
• https://github.com/tensorflow/tensorflow/issues/51936
• https://github.com/tensorflow/tensorflow/commit/12b1ff82b3f26ff8de17e58703231d5a02ef1b8b

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2021-11-05
• Version: 0.3.3
• AVID Entry