AVID-2026-R0913

Description

Segfault due to negative splits in SplitV (CVE-2021-41222)

Details

TensorFlow is an open source platform for machine learning. In affected versions the implementation of SplitV can trigger a segfault is an attacker supplies negative arguments. This occurs whenever size_splits contains more than one value and at least one value is negative. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.

Reason for inclusion in AVID: CVE-2021-41222 describes a segfault in TensorFlow’s SplitV triggered by negative arguments. This is a software vulnerability in a core AI framework, affecting versions of TensorFlow used to develop, train, and deploy AI systems. TensorFlow is a primary component in AI pipelines, so this constitutes a software supply-chain vulnerability within AI systems. The advisory provides specific vulnerable versions and a fix, indicating a clear security/safety risk (availability impact). Evidence is present in the CVE description and references.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cpf4-wx82-gxp6
• https://github.com/tensorflow/tensorflow/commit/25d622ffc432acc736b14ca3904177579e733cc6

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2021-11-05
• Version: 0.3.3
• AVID Entry