AVID-2026-R1078

Description

CHECK fail in FakeQuantWithMinMaxVars in TensorFlow (CVE-2022-35971)

Details

TensorFlow is an open source platform for machine learning. If FakeQuantWithMinMaxVars is given min or max tensors of a nonzero rank, it results in a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 785d67a78a1d533759fcd2f5e8d6ef778de849e0. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

Reason for inclusion in AVID: The CVE targets TensorFlow, a core AI framework; the issue is a software vulnerability (denial of service) in a component commonly used in AI pipelines, affecting the software supply chain for general-purpose AI systems. It is in the AI software stack (framework) rather than hardware/firmware. Sufficient evidence provided (CVE, commit, affected versions, fix).

References

• NVD entry
• https://github.com/tensorflow/tensorflow/commit/785d67a78a1d533759fcd2f5e8d6ef778de849e0
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-9fpg-838v-wpv7

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-09-16
• Version: 0.3.3
• AVID Entry