AVID-2026-R1069

Description

CHECK failure in TensorListReserve in TensorFlow (CVE-2022-35960)

Details

TensorFlow is an open source platform for machine learning. In core/kernels/list_kernels.cc's TensorListReserve, num_elements is assumed to be a tensor of size 1. When a num_elements of more than 1 element is provided, then tf.raw_ops.TensorListReserve fails the CHECK_EQ in CheckIsAlignedAndSingleElement. We have patched the issue in GitHub commit b5f6fbfba76576202b72119897561e3bd4f179c7. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

Reason for inclusion in AVID: CVE-2022-35960 describes a TensorFlow software bug (CHECK failure in TensorListReserve) that can cause a failure/crash; it’s a vulnerability in a widely used ML framework. It affects the software stack used to build/deploy AI systems, enabling supply-chain relevance in software packages. The issue is in the TensorFlow codebase, with a patch and references; thus it is an AI-related supply chain vulnerability with security impact, supported by CVSS and advisories.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-v5xg-3q2c-c2r4
• https://github.com/tensorflow/tensorflow/commit/b5f6fbfba76576202b72119897561e3bd4f179c7
• https://github.com/tensorflow/tensorflow/blob/c8ba76d48567aed347508e0552a257641931024d/tensorflow/core/kernels/list_kernels.cc#L322-L325

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-09-16
• Version: 0.3.3
• AVID Entry