AVID-2026-R1089

Description

CHECK fail in MaxPool in TensorFlow (CVE-2022-35989)

Details

TensorFlow is an open source platform for machine learning. When MaxPool receives a window size input array ksize with dimensions greater than its input tensor input, the GPU kernel gives a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 32d7bd3defd134f21a4e344c8dfd40099aaf6b18. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

Reason for inclusion in AVID: This CVE describes a software vulnerability in TensorFlow (MaxPool CHECK failure) that can cause a denial-of-service. TensorFlow is a core ML framework used in AI pipelines; the issue affects a widely used dependency and has a published patch in the codebase, with backports mentioned. Therefore it is AI-related, impacts the GP AI supply chain (dependencies/runtimes used to build/run AI systems), is security/safety-related (DoS via assertion), and is supported by explicit evidence in the report.

References

• NVD entry
• https://github.com/tensorflow/tensorflow/security/advisories/GHSA-j43h-pgmg-5hjq
• https://github.com/tensorflow/tensorflow/commit/32d7bd3defd134f21a4e344c8dfd40099aaf6b18

Affected or Relevant Artifacts

• Developer: tensorflow
• Deployer: tensorflow
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2022-09-16
• Version: 0.3.3
• AVID Entry