AVID-2026-R0977

Description

Integer overflow in Tensorflow (CVE-2022-23575)

Details

Tensorflow is an Open Source Machine Learning Framework. The implementation of OpLevelCostEstimator::CalculateTensorSize is vulnerable to an integer overflow if an attacker can create an operation which would involve a tensor with large enough number of elements. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

Reason for inclusion in AVID: CVE-2022-23575 describes an integer overflow in TensorFlow’s OpLevelCostEstimator::CalculateTensorSize. This is a software vulnerability within a widely-used AI framework (TensorFlow) that can affect AI models and pipelines by enabling crafted operations to trigger overflows. TensorFlow is a core component in AI system stacks (training, inference, deployment), so this constitutes a software supply-chain issue in AI software ecosystems. The advisory includes details, affected versions, and a fix, satisfying evidence requirements. Therefore, it is relevant to AVID curation as a vulnerability in the AI software supply chain.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-c94w-c95p-phf8
• https://github.com/tensorflow/tensorflow/commit/fcd18ce3101f245b083b30655c27b239dc72221e
• https://github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/grappler/costs/op_level_cost_estimator.cc#L1552-L1558

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-02-04
• Version: 0.3.3
• AVID Entry