AVID-2026-R0968

Description

Reachable Assertion in Tensorflow (CVE-2022-23564)

Details

Tensorflow is an Open Source Machine Learning Framework. When decoding a resource handle tensor from protobuf, a TensorFlow process can encounter cases where a CHECK assertion is invalidated based on user controlled arguments. This allows attackers to cause denial of services in TensorFlow processes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

Reason for inclusion in AVID: CVE-2022-23564 describes a reachable assertion in TensorFlow during decoding a resource handle from protobuf, enabling denial of service. TensorFlow is a core ML framework; the vulnerability affects multiple versions and is addressed in fixes. This is a software vulnerability in a component used to build/run AI systems, i.e., a general-purpose AI supply chain issue.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-8rcj-c8pj-v3m3
• https://github.com/tensorflow/tensorflow/commit/14fea662350e7c26eb5fe1be2ac31704e5682ee6

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-02-04
• Version: 0.3.3
• AVID Entry