AVID-2026-R1083

Description

Segfault in SparseBincount in TensorFlow (CVE-2022-35982)

Details

TensorFlow is an open source platform for machine learning. If SparseBincount is given inputs for indices, values, and dense_shape that do not make a valid sparse tensor, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 40adbe4dd15b582b0210dfbf40c243a62f5119fa. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

Reason for inclusion in AVID: CVE-2022-35982 describes a segfault in TensorFlow’s SparseBincount that can lead to denial of service. TensorFlow is a core AI/ML framework, and the issue affects software components (library code) used to build, train, deploy, and run AI systems. The report includes affected versions, a patch commit, and CVSS-like details, providing sufficient evidence of a software vulnerability in a component critical to AI pipelines. Therefore it is relevant to the AI software supply chain).

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-397c-5g2j-qxpv
• https://github.com/tensorflow/tensorflow/commit/40adbe4dd15b582b0210dfbf40c243a62f5119fa

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-09-16
• Version: 0.3.3
• AVID Entry