Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-41211
Vulnerability from cvelistv5
Published
2021-11-05 20:15
Modified
2024-08-04 03:08
Severity ?
EPSS score ?
Summary
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| security-advisories@github.com | https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244 | Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c | Exploit, Third Party Advisory |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| tensorflow | tensorflow |
Version: >= 2.6.0, < 2.6.1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T03:08:31.458Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "tensorflow", vendor: "tensorflow", versions: [ { status: "affected", version: ">= 2.6.0, < 2.6.1", }, ], }, ], descriptions: [ { lang: "en", value: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-125", description: "CWE-125: Out-of-bounds Read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-11-05T20:15:11", orgId: "a0819718-46f1-4df5-94e2-005712e83aaa", shortName: "GitHub_M", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { tags: [ "x_refsource_MISC", ], url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], source: { advisory: "GHSA-cvgx-3v3q-m36c", discovery: "UNKNOWN", }, title: "Heap OOB read in shape inference for `QuantizeV2`", x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2021-41211", STATE: "PUBLIC", TITLE: "Heap OOB read in shape inference for `QuantizeV2`", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "tensorflow", version: { version_data: [ { version_value: ">= 2.6.0, < 2.6.1", }, ], }, }, ], }, vendor_name: "tensorflow", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", }, ], }, impact: { cvss: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-125: Out-of-bounds Read", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", refsource: "CONFIRM", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { name: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", refsource: "MISC", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }, source: { advisory: "GHSA-cvgx-3v3q-m36c", discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "a0819718-46f1-4df5-94e2-005712e83aaa", assignerShortName: "GitHub_M", cveId: "CVE-2021-41211", datePublished: "2021-11-05T20:15:11", dateReserved: "2021-09-15T00:00:00", dateUpdated: "2024-08-04T03:08:31.458Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2021-41211\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2021-11-05T21:15:08.813\",\"lastModified\":\"2024-11-21T06:25:47.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.\"},{\"lang\":\"es\",\"value\":\"TensorFlow es una plataforma de código abierto para el aprendizaje automático. En las versiones afectadas, el código de inferencia de forma para \\\"QuantizeV2\\\" puede desencadenar una lectura fuera de límites de la matriz asignada a la pila. Esto ocurre siempre que el \\\"eje\\\" es un valor negativo menor que \\\"1\\\". En este caso, estamos accediendo a los datos antes del inicio de un buffer de heap. El código permite que \\\"axis\\\" sea un argumento opcional (\\\"s\\\" contendría un código de error \\\"error::NOT_FOUND\\\"). En caso contrario, asume que \\\"axis\\\" es un índice válido en las dimensiones del tensor \\\"input\\\". Si \\\"axis\\\" es menor que \\\"-1\\\", se produce una lectura OOB de la pila. La corrección será incluida en TensorFlow versión 2.7.0. También vamos a incluir este commit en TensorFlow versión 2.6.1, ya que esta versión es la única que también está afectada\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\",\"baseScore\":7.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.2},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\",\"baseScore\":7.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.2}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:P\",\"baseScore\":3.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:tensorflow:2.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"651EA851-E660-4E53-9F3E-B6B69D91326B\"}]}]}],\"references\":[{\"url\":\"https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]}]}}", }, }
opensuse-su-2024:12116-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
tensorflow-lite-2.9.1-1.1 on GA media
Notes
Title of the patch
tensorflow-lite-2.9.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the tensorflow-lite-2.9.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12116
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "tensorflow-lite-2.9.1-1.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the tensorflow-lite-2.9.1-1.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-12116", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12116-1.json", }, { category: "self", summary: "SUSE CVE CVE-2020-10531 page", url: "https://www.suse.com/security/cve/CVE-2020-10531/", }, { category: "self", summary: "SUSE CVE CVE-2020-15190 page", url: "https://www.suse.com/security/cve/CVE-2020-15190/", }, { category: "self", summary: "SUSE CVE CVE-2020-15191 page", url: "https://www.suse.com/security/cve/CVE-2020-15191/", }, { category: "self", summary: "SUSE CVE CVE-2020-15194 page", url: "https://www.suse.com/security/cve/CVE-2020-15194/", }, { category: "self", summary: "SUSE CVE CVE-2020-15202 page", url: "https://www.suse.com/security/cve/CVE-2020-15202/", }, { category: "self", summary: "SUSE CVE CVE-2020-15203 page", url: "https://www.suse.com/security/cve/CVE-2020-15203/", }, { category: "self", summary: "SUSE CVE CVE-2020-15204 page", url: "https://www.suse.com/security/cve/CVE-2020-15204/", }, { category: "self", summary: "SUSE CVE CVE-2020-15205 page", url: "https://www.suse.com/security/cve/CVE-2020-15205/", }, { category: "self", summary: "SUSE CVE CVE-2020-15206 page", url: "https://www.suse.com/security/cve/CVE-2020-15206/", }, { category: "self", summary: "SUSE CVE CVE-2020-15207 page", url: "https://www.suse.com/security/cve/CVE-2020-15207/", }, { category: "self", summary: "SUSE CVE CVE-2020-15208 page", url: "https://www.suse.com/security/cve/CVE-2020-15208/", }, { category: "self", summary: "SUSE CVE CVE-2020-15209 page", url: "https://www.suse.com/security/cve/CVE-2020-15209/", }, { category: "self", summary: "SUSE CVE CVE-2020-26266 page", url: "https://www.suse.com/security/cve/CVE-2020-26266/", }, { category: "self", summary: "SUSE CVE CVE-2020-26270 page", url: "https://www.suse.com/security/cve/CVE-2020-26270/", }, { category: "self", summary: "SUSE CVE CVE-2021-22922 page", url: "https://www.suse.com/security/cve/CVE-2021-22922/", }, { category: "self", summary: "SUSE CVE CVE-2021-22923 page", url: "https://www.suse.com/security/cve/CVE-2021-22923/", }, { category: "self", summary: "SUSE CVE CVE-2021-22926 page", url: "https://www.suse.com/security/cve/CVE-2021-22926/", }, { category: "self", summary: "SUSE CVE CVE-2021-37635 page", url: "https://www.suse.com/security/cve/CVE-2021-37635/", }, { category: "self", summary: "SUSE CVE CVE-2021-37636 page", url: "https://www.suse.com/security/cve/CVE-2021-37636/", }, { category: "self", summary: "SUSE CVE CVE-2021-37637 page", url: "https://www.suse.com/security/cve/CVE-2021-37637/", }, { category: "self", summary: "SUSE CVE CVE-2021-37638 page", url: "https://www.suse.com/security/cve/CVE-2021-37638/", }, { category: "self", summary: "SUSE CVE CVE-2021-37639 page", url: "https://www.suse.com/security/cve/CVE-2021-37639/", }, { category: "self", summary: "SUSE CVE CVE-2021-37640 page", url: "https://www.suse.com/security/cve/CVE-2021-37640/", }, { category: "self", summary: "SUSE CVE CVE-2021-37641 page", url: "https://www.suse.com/security/cve/CVE-2021-37641/", }, { category: "self", summary: "SUSE CVE CVE-2021-37642 page", url: "https://www.suse.com/security/cve/CVE-2021-37642/", }, { category: "self", summary: "SUSE CVE CVE-2021-37643 page", url: "https://www.suse.com/security/cve/CVE-2021-37643/", }, { category: "self", summary: "SUSE CVE CVE-2021-37644 page", url: "https://www.suse.com/security/cve/CVE-2021-37644/", }, { category: "self", summary: "SUSE CVE CVE-2021-37645 page", url: "https://www.suse.com/security/cve/CVE-2021-37645/", }, { category: "self", summary: "SUSE CVE CVE-2021-37646 page", url: "https://www.suse.com/security/cve/CVE-2021-37646/", }, { category: "self", summary: "SUSE CVE CVE-2021-37647 page", url: "https://www.suse.com/security/cve/CVE-2021-37647/", }, { category: "self", summary: "SUSE CVE CVE-2021-37648 page", url: "https://www.suse.com/security/cve/CVE-2021-37648/", }, { category: "self", summary: "SUSE CVE CVE-2021-37649 page", url: "https://www.suse.com/security/cve/CVE-2021-37649/", }, { category: "self", summary: "SUSE CVE CVE-2021-37650 page", url: "https://www.suse.com/security/cve/CVE-2021-37650/", }, { category: "self", summary: "SUSE CVE CVE-2021-37651 page", url: "https://www.suse.com/security/cve/CVE-2021-37651/", }, { category: "self", summary: "SUSE CVE CVE-2021-37652 page", url: "https://www.suse.com/security/cve/CVE-2021-37652/", }, { category: "self", summary: "SUSE CVE CVE-2021-37653 page", url: "https://www.suse.com/security/cve/CVE-2021-37653/", }, { category: "self", summary: "SUSE CVE CVE-2021-37654 page", url: "https://www.suse.com/security/cve/CVE-2021-37654/", }, { category: "self", summary: "SUSE CVE CVE-2021-37655 page", url: "https://www.suse.com/security/cve/CVE-2021-37655/", }, { category: "self", summary: "SUSE CVE CVE-2021-37656 page", url: "https://www.suse.com/security/cve/CVE-2021-37656/", }, { category: "self", summary: "SUSE CVE CVE-2021-37657 page", url: "https://www.suse.com/security/cve/CVE-2021-37657/", }, { category: "self", summary: "SUSE CVE CVE-2021-37658 page", url: "https://www.suse.com/security/cve/CVE-2021-37658/", }, { category: "self", summary: "SUSE CVE CVE-2021-37659 page", url: "https://www.suse.com/security/cve/CVE-2021-37659/", }, { category: "self", summary: "SUSE CVE CVE-2021-37660 page", url: "https://www.suse.com/security/cve/CVE-2021-37660/", }, { category: "self", summary: "SUSE CVE CVE-2021-37661 page", url: "https://www.suse.com/security/cve/CVE-2021-37661/", }, { category: "self", summary: "SUSE CVE CVE-2021-37662 page", url: "https://www.suse.com/security/cve/CVE-2021-37662/", }, { category: "self", summary: "SUSE CVE CVE-2021-37663 page", url: "https://www.suse.com/security/cve/CVE-2021-37663/", }, { category: "self", summary: "SUSE CVE CVE-2021-37664 page", url: "https://www.suse.com/security/cve/CVE-2021-37664/", }, { category: "self", summary: "SUSE CVE CVE-2021-37665 page", url: "https://www.suse.com/security/cve/CVE-2021-37665/", }, { category: "self", summary: "SUSE CVE CVE-2021-37666 page", url: "https://www.suse.com/security/cve/CVE-2021-37666/", }, { category: "self", summary: "SUSE CVE CVE-2021-37667 page", url: "https://www.suse.com/security/cve/CVE-2021-37667/", }, { category: "self", summary: "SUSE CVE CVE-2021-37668 page", url: "https://www.suse.com/security/cve/CVE-2021-37668/", }, { category: "self", summary: "SUSE CVE CVE-2021-37669 page", url: "https://www.suse.com/security/cve/CVE-2021-37669/", }, { category: "self", summary: "SUSE CVE CVE-2021-37670 page", url: "https://www.suse.com/security/cve/CVE-2021-37670/", }, { category: "self", summary: "SUSE CVE CVE-2021-37671 page", url: "https://www.suse.com/security/cve/CVE-2021-37671/", }, { category: "self", summary: "SUSE CVE CVE-2021-37672 page", url: "https://www.suse.com/security/cve/CVE-2021-37672/", }, { category: "self", summary: "SUSE CVE CVE-2021-37673 page", url: "https://www.suse.com/security/cve/CVE-2021-37673/", }, { category: "self", summary: "SUSE CVE CVE-2021-37674 page", url: "https://www.suse.com/security/cve/CVE-2021-37674/", }, { category: "self", summary: "SUSE CVE CVE-2021-37675 page", url: "https://www.suse.com/security/cve/CVE-2021-37675/", }, { category: "self", summary: "SUSE CVE CVE-2021-37676 page", url: "https://www.suse.com/security/cve/CVE-2021-37676/", }, { category: "self", summary: "SUSE CVE CVE-2021-37677 page", url: "https://www.suse.com/security/cve/CVE-2021-37677/", }, { category: "self", summary: "SUSE CVE CVE-2021-37678 page", url: "https://www.suse.com/security/cve/CVE-2021-37678/", }, { category: "self", summary: "SUSE CVE CVE-2021-37679 page", url: "https://www.suse.com/security/cve/CVE-2021-37679/", }, { category: "self", summary: "SUSE CVE CVE-2021-37680 page", url: "https://www.suse.com/security/cve/CVE-2021-37680/", }, { category: "self", summary: "SUSE CVE CVE-2021-37681 page", url: "https://www.suse.com/security/cve/CVE-2021-37681/", }, { category: "self", summary: "SUSE CVE CVE-2021-37682 page", url: "https://www.suse.com/security/cve/CVE-2021-37682/", }, { category: "self", summary: "SUSE CVE CVE-2021-37683 page", url: "https://www.suse.com/security/cve/CVE-2021-37683/", }, { category: "self", summary: "SUSE CVE CVE-2021-37684 page", url: "https://www.suse.com/security/cve/CVE-2021-37684/", }, { category: "self", summary: "SUSE CVE CVE-2021-37685 page", url: "https://www.suse.com/security/cve/CVE-2021-37685/", }, { category: "self", summary: "SUSE CVE CVE-2021-37686 page", url: "https://www.suse.com/security/cve/CVE-2021-37686/", }, { category: "self", summary: "SUSE CVE CVE-2021-37687 page", url: "https://www.suse.com/security/cve/CVE-2021-37687/", }, { category: "self", summary: "SUSE CVE CVE-2021-37688 page", url: "https://www.suse.com/security/cve/CVE-2021-37688/", }, { category: "self", summary: "SUSE CVE CVE-2021-37689 page", url: "https://www.suse.com/security/cve/CVE-2021-37689/", }, { category: "self", summary: "SUSE CVE CVE-2021-37690 page", url: "https://www.suse.com/security/cve/CVE-2021-37690/", }, { category: "self", summary: "SUSE CVE CVE-2021-37691 page", url: "https://www.suse.com/security/cve/CVE-2021-37691/", }, { category: "self", summary: "SUSE CVE CVE-2021-37692 page", url: "https://www.suse.com/security/cve/CVE-2021-37692/", }, { category: "self", summary: "SUSE CVE CVE-2021-41195 page", url: "https://www.suse.com/security/cve/CVE-2021-41195/", }, { category: "self", summary: "SUSE CVE CVE-2021-41196 page", url: "https://www.suse.com/security/cve/CVE-2021-41196/", }, { category: "self", summary: "SUSE CVE CVE-2021-41197 page", url: "https://www.suse.com/security/cve/CVE-2021-41197/", }, { category: "self", summary: "SUSE CVE CVE-2021-41198 page", url: "https://www.suse.com/security/cve/CVE-2021-41198/", }, { category: "self", summary: "SUSE CVE CVE-2021-41199 page", url: "https://www.suse.com/security/cve/CVE-2021-41199/", }, { category: "self", summary: "SUSE CVE CVE-2021-41200 page", url: "https://www.suse.com/security/cve/CVE-2021-41200/", }, { category: "self", summary: "SUSE CVE CVE-2021-41201 page", url: "https://www.suse.com/security/cve/CVE-2021-41201/", }, { category: "self", summary: "SUSE CVE CVE-2021-41202 page", url: "https://www.suse.com/security/cve/CVE-2021-41202/", }, { category: "self", summary: "SUSE CVE CVE-2021-41203 page", url: "https://www.suse.com/security/cve/CVE-2021-41203/", }, { category: "self", summary: "SUSE CVE CVE-2021-41204 page", url: "https://www.suse.com/security/cve/CVE-2021-41204/", }, { category: "self", summary: "SUSE CVE CVE-2021-41205 page", url: "https://www.suse.com/security/cve/CVE-2021-41205/", }, { category: "self", summary: "SUSE CVE CVE-2021-41206 page", url: "https://www.suse.com/security/cve/CVE-2021-41206/", }, { category: "self", summary: "SUSE CVE CVE-2021-41207 page", url: "https://www.suse.com/security/cve/CVE-2021-41207/", }, { category: "self", summary: "SUSE CVE CVE-2021-41208 page", url: "https://www.suse.com/security/cve/CVE-2021-41208/", }, { category: "self", summary: "SUSE CVE CVE-2021-41209 page", url: "https://www.suse.com/security/cve/CVE-2021-41209/", }, { category: "self", summary: "SUSE CVE CVE-2021-41210 page", url: "https://www.suse.com/security/cve/CVE-2021-41210/", }, { category: "self", summary: "SUSE CVE CVE-2021-41211 page", url: "https://www.suse.com/security/cve/CVE-2021-41211/", }, { category: "self", summary: "SUSE CVE CVE-2021-41212 page", url: "https://www.suse.com/security/cve/CVE-2021-41212/", }, { category: "self", summary: "SUSE CVE CVE-2021-41213 page", url: "https://www.suse.com/security/cve/CVE-2021-41213/", }, { category: "self", summary: "SUSE CVE CVE-2021-41214 page", url: "https://www.suse.com/security/cve/CVE-2021-41214/", }, { category: "self", summary: "SUSE CVE CVE-2021-41215 page", url: "https://www.suse.com/security/cve/CVE-2021-41215/", }, { category: "self", summary: "SUSE CVE CVE-2021-41216 page", url: "https://www.suse.com/security/cve/CVE-2021-41216/", }, { category: "self", summary: "SUSE CVE CVE-2021-41217 page", url: "https://www.suse.com/security/cve/CVE-2021-41217/", }, { category: "self", summary: "SUSE CVE CVE-2021-41218 page", url: "https://www.suse.com/security/cve/CVE-2021-41218/", }, { category: "self", summary: "SUSE CVE CVE-2021-41219 page", url: "https://www.suse.com/security/cve/CVE-2021-41219/", }, { category: "self", summary: "SUSE CVE CVE-2021-41220 page", url: "https://www.suse.com/security/cve/CVE-2021-41220/", }, { category: "self", summary: "SUSE CVE CVE-2021-41221 page", url: "https://www.suse.com/security/cve/CVE-2021-41221/", }, { category: "self", summary: "SUSE CVE CVE-2021-41222 page", url: "https://www.suse.com/security/cve/CVE-2021-41222/", }, { category: "self", summary: "SUSE CVE CVE-2021-41223 page", url: "https://www.suse.com/security/cve/CVE-2021-41223/", }, { category: "self", summary: "SUSE CVE CVE-2021-41224 page", url: "https://www.suse.com/security/cve/CVE-2021-41224/", }, { category: "self", summary: "SUSE CVE CVE-2021-41225 page", url: "https://www.suse.com/security/cve/CVE-2021-41225/", }, { category: "self", summary: "SUSE CVE CVE-2021-41226 page", url: "https://www.suse.com/security/cve/CVE-2021-41226/", }, { category: "self", summary: "SUSE CVE CVE-2021-41227 page", url: "https://www.suse.com/security/cve/CVE-2021-41227/", }, { category: "self", summary: "SUSE CVE CVE-2021-41228 page", url: "https://www.suse.com/security/cve/CVE-2021-41228/", }, { category: "self", summary: "SUSE CVE CVE-2022-21725 page", url: "https://www.suse.com/security/cve/CVE-2022-21725/", }, { category: "self", summary: "SUSE CVE CVE-2022-21726 page", url: "https://www.suse.com/security/cve/CVE-2022-21726/", }, { category: "self", summary: "SUSE CVE CVE-2022-21727 page", url: "https://www.suse.com/security/cve/CVE-2022-21727/", }, { category: "self", summary: "SUSE CVE CVE-2022-21728 page", url: "https://www.suse.com/security/cve/CVE-2022-21728/", }, { category: "self", summary: "SUSE CVE CVE-2022-21729 page", url: "https://www.suse.com/security/cve/CVE-2022-21729/", }, { category: "self", summary: "SUSE CVE CVE-2022-21730 page", url: "https://www.suse.com/security/cve/CVE-2022-21730/", }, { category: "self", summary: "SUSE CVE CVE-2022-21731 page", url: "https://www.suse.com/security/cve/CVE-2022-21731/", }, { category: "self", summary: "SUSE CVE CVE-2022-21732 page", url: "https://www.suse.com/security/cve/CVE-2022-21732/", }, { category: "self", summary: "SUSE CVE CVE-2022-21733 page", url: "https://www.suse.com/security/cve/CVE-2022-21733/", }, { category: "self", summary: "SUSE CVE CVE-2022-21734 page", url: "https://www.suse.com/security/cve/CVE-2022-21734/", }, { category: "self", summary: "SUSE CVE CVE-2022-21735 page", url: "https://www.suse.com/security/cve/CVE-2022-21735/", }, { category: "self", summary: "SUSE CVE CVE-2022-21736 page", url: "https://www.suse.com/security/cve/CVE-2022-21736/", }, { category: "self", summary: "SUSE CVE CVE-2022-21737 page", url: "https://www.suse.com/security/cve/CVE-2022-21737/", }, { category: "self", summary: "SUSE CVE CVE-2022-21738 page", url: "https://www.suse.com/security/cve/CVE-2022-21738/", }, { category: "self", summary: "SUSE CVE CVE-2022-21739 page", url: "https://www.suse.com/security/cve/CVE-2022-21739/", }, { category: "self", summary: "SUSE CVE CVE-2022-21740 page", url: "https://www.suse.com/security/cve/CVE-2022-21740/", }, { category: "self", summary: "SUSE CVE CVE-2022-21741 page", url: "https://www.suse.com/security/cve/CVE-2022-21741/", }, { category: "self", summary: "SUSE CVE CVE-2022-23557 page", url: "https://www.suse.com/security/cve/CVE-2022-23557/", }, { category: "self", summary: "SUSE CVE CVE-2022-23558 page", url: "https://www.suse.com/security/cve/CVE-2022-23558/", }, { category: "self", summary: "SUSE CVE CVE-2022-23559 page", url: "https://www.suse.com/security/cve/CVE-2022-23559/", }, { category: "self", summary: "SUSE CVE CVE-2022-23560 page", url: "https://www.suse.com/security/cve/CVE-2022-23560/", }, { category: "self", summary: "SUSE CVE CVE-2022-23561 page", url: "https://www.suse.com/security/cve/CVE-2022-23561/", }, { category: "self", summary: "SUSE CVE CVE-2022-23562 page", url: "https://www.suse.com/security/cve/CVE-2022-23562/", }, { category: "self", summary: "SUSE CVE CVE-2022-23563 page", url: "https://www.suse.com/security/cve/CVE-2022-23563/", }, { category: "self", summary: "SUSE CVE CVE-2022-23564 page", url: "https://www.suse.com/security/cve/CVE-2022-23564/", }, { category: "self", summary: "SUSE CVE CVE-2022-23565 page", url: "https://www.suse.com/security/cve/CVE-2022-23565/", }, { category: "self", summary: "SUSE CVE CVE-2022-23566 page", url: "https://www.suse.com/security/cve/CVE-2022-23566/", }, { category: "self", summary: "SUSE CVE CVE-2022-23567 page", url: "https://www.suse.com/security/cve/CVE-2022-23567/", }, { category: "self", summary: "SUSE CVE CVE-2022-23568 page", url: "https://www.suse.com/security/cve/CVE-2022-23568/", }, { category: "self", summary: "SUSE CVE CVE-2022-23569 page", url: "https://www.suse.com/security/cve/CVE-2022-23569/", }, { category: "self", summary: "SUSE CVE CVE-2022-23570 page", url: "https://www.suse.com/security/cve/CVE-2022-23570/", }, { category: "self", summary: "SUSE CVE CVE-2022-23571 page", url: "https://www.suse.com/security/cve/CVE-2022-23571/", }, { category: "self", summary: "SUSE CVE CVE-2022-23572 page", url: "https://www.suse.com/security/cve/CVE-2022-23572/", }, { category: "self", summary: "SUSE CVE CVE-2022-23573 page", url: "https://www.suse.com/security/cve/CVE-2022-23573/", }, { category: "self", summary: "SUSE CVE CVE-2022-23574 page", url: "https://www.suse.com/security/cve/CVE-2022-23574/", }, { category: "self", summary: "SUSE CVE CVE-2022-23575 page", url: "https://www.suse.com/security/cve/CVE-2022-23575/", }, { category: "self", summary: "SUSE CVE CVE-2022-23576 page", url: "https://www.suse.com/security/cve/CVE-2022-23576/", }, { category: "self", summary: "SUSE CVE CVE-2022-23577 page", url: "https://www.suse.com/security/cve/CVE-2022-23577/", }, { category: "self", summary: "SUSE CVE CVE-2022-23578 page", url: "https://www.suse.com/security/cve/CVE-2022-23578/", }, { category: "self", summary: "SUSE CVE CVE-2022-23579 page", url: "https://www.suse.com/security/cve/CVE-2022-23579/", }, { category: "self", summary: "SUSE CVE CVE-2022-23580 page", url: "https://www.suse.com/security/cve/CVE-2022-23580/", }, { category: "self", summary: "SUSE CVE CVE-2022-23581 page", url: "https://www.suse.com/security/cve/CVE-2022-23581/", }, { category: "self", summary: "SUSE CVE CVE-2022-23582 page", url: "https://www.suse.com/security/cve/CVE-2022-23582/", }, { category: "self", summary: "SUSE CVE CVE-2022-23583 page", url: "https://www.suse.com/security/cve/CVE-2022-23583/", }, { category: "self", summary: "SUSE CVE CVE-2022-23584 page", url: "https://www.suse.com/security/cve/CVE-2022-23584/", }, { category: "self", summary: "SUSE CVE CVE-2022-23585 page", url: "https://www.suse.com/security/cve/CVE-2022-23585/", }, { category: "self", summary: "SUSE CVE CVE-2022-23586 page", url: "https://www.suse.com/security/cve/CVE-2022-23586/", }, { category: "self", summary: "SUSE CVE CVE-2022-23587 page", url: "https://www.suse.com/security/cve/CVE-2022-23587/", }, { category: "self", summary: "SUSE CVE CVE-2022-23588 page", url: "https://www.suse.com/security/cve/CVE-2022-23588/", }, { category: "self", summary: "SUSE CVE CVE-2022-23589 page", url: "https://www.suse.com/security/cve/CVE-2022-23589/", }, { category: "self", summary: "SUSE CVE CVE-2022-23590 page", url: "https://www.suse.com/security/cve/CVE-2022-23590/", }, { category: "self", summary: "SUSE CVE CVE-2022-23591 page", url: "https://www.suse.com/security/cve/CVE-2022-23591/", }, { category: "self", summary: "SUSE CVE CVE-2022-23594 page", url: "https://www.suse.com/security/cve/CVE-2022-23594/", }, { category: "self", summary: "SUSE CVE CVE-2022-23595 page", url: "https://www.suse.com/security/cve/CVE-2022-23595/", }, ], title: "tensorflow-lite-2.9.1-1.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:12116-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "tensorflow-lite-2.9.1-1.1.aarch64", product: { name: "tensorflow-lite-2.9.1-1.1.aarch64", product_id: "tensorflow-lite-2.9.1-1.1.aarch64", }, }, { category: "product_version", name: "tensorflow-lite-devel-2.9.1-1.1.aarch64", product: { name: "tensorflow-lite-devel-2.9.1-1.1.aarch64", product_id: "tensorflow-lite-devel-2.9.1-1.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "tensorflow-lite-2.9.1-1.1.ppc64le", product: { name: "tensorflow-lite-2.9.1-1.1.ppc64le", product_id: "tensorflow-lite-2.9.1-1.1.ppc64le", }, }, { category: "product_version", name: "tensorflow-lite-devel-2.9.1-1.1.ppc64le", product: { name: "tensorflow-lite-devel-2.9.1-1.1.ppc64le", product_id: "tensorflow-lite-devel-2.9.1-1.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "tensorflow-lite-2.9.1-1.1.s390x", product: { name: "tensorflow-lite-2.9.1-1.1.s390x", product_id: "tensorflow-lite-2.9.1-1.1.s390x", }, }, { category: "product_version", name: "tensorflow-lite-devel-2.9.1-1.1.s390x", product: { name: "tensorflow-lite-devel-2.9.1-1.1.s390x", product_id: "tensorflow-lite-devel-2.9.1-1.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "tensorflow-lite-2.9.1-1.1.x86_64", product: { name: "tensorflow-lite-2.9.1-1.1.x86_64", product_id: "tensorflow-lite-2.9.1-1.1.x86_64", }, }, { category: "product_version", name: "tensorflow-lite-devel-2.9.1-1.1.x86_64", product: { name: "tensorflow-lite-devel-2.9.1-1.1.x86_64", product_id: "tensorflow-lite-devel-2.9.1-1.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "tensorflow-lite-2.9.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", }, product_reference: "tensorflow-lite-2.9.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-2.9.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", }, product_reference: "tensorflow-lite-2.9.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-2.9.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", }, product_reference: "tensorflow-lite-2.9.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-2.9.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", }, product_reference: "tensorflow-lite-2.9.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-devel-2.9.1-1.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", }, product_reference: "tensorflow-lite-devel-2.9.1-1.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-devel-2.9.1-1.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", }, product_reference: "tensorflow-lite-devel-2.9.1-1.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-devel-2.9.1-1.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", }, product_reference: "tensorflow-lite-devel-2.9.1-1.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "tensorflow-lite-devel-2.9.1-1.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", }, product_reference: "tensorflow-lite-devel-2.9.1-1.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2020-10531", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-10531", }, ], notes: [ { category: "general", text: "An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-10531", url: "https://www.suse.com/security/cve/CVE-2020-10531", }, { category: "external", summary: "SUSE Bug 1166844 for CVE-2020-10531", url: "https://bugzilla.suse.com/1166844", }, { category: "external", summary: "SUSE Bug 1175778 for CVE-2020-10531", url: "https://bugzilla.suse.com/1175778", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-10531", }, { cve: "CVE-2020-15190", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15190", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Switch` operation takes as input a tensor and a boolean and outputs two tensors. Depending on the boolean value, one of the tensors is exactly the input tensor whereas the other one should be an empty tensor. However, the eager runtime traverses all tensors in the output. Since only one of the tensors is defined, the other one is `nullptr`, hence we are binding a reference to `nullptr`. This is undefined behavior and reported as an error if compiling with `-fsanitize=null`. In this case, this results in a segmentation fault The issue is patched in commit da8558533d925694483d2c136a9220d6d49d843c, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15190", url: "https://www.suse.com/security/cve/CVE-2020-15190", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15190", }, { cve: "CVE-2020-15191", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15191", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `dlpack.to_dlpack` the expected validations will cause variables to bind to `nullptr` while setting a `status` variable to the error condition. However, this `status` argument is not properly checked. Hence, code following these methods will bind references to null pointers. This is undefined behavior and reported as an error if compiling with `-fsanitize=null`. The issue is patched in commit 22e07fb204386768e5bcbea563641ea11f96ceb8 and is released in TensorFlow versions 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15191", url: "https://www.suse.com/security/cve/CVE-2020-15191", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15191", }, { cve: "CVE-2020-15194", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15194", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmptyRowsGrad` implementation has incomplete validation of the shapes of its arguments. Although `reverse_index_map_t` and `grad_values_t` are accessed in a similar pattern, only `reverse_index_map_t` is validated to be of proper shape. Hence, malicious users can pass a bad `grad_values_t` to trigger an assertion failure in `vec`, causing denial of service in serving installations. The issue is patched in commit 390611e0d45c5793c7066110af37c8514e6a6c54, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.\"", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15194", url: "https://www.suse.com/security/cve/CVE-2020-15194", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15194", }, { cve: "CVE-2020-15202", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15202", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in TensorFlow expects the last argument to be a function taking two `int64` (i.e., `long long`) arguments. However, there are several places in TensorFlow where a lambda taking `int` or `int32` arguments is being used. In these cases, if the amount of work to be parallelized is large enough, integer truncation occurs. Depending on how the two arguments of the lambda are used, this can result in segfaults, read/write outside of heap allocated arrays, stack overflows, or data corruption. The issue is patched in commits 27b417360cbd671ef55915e4bb6bb06af8b8a832 and ca8c013b5e97b1373b3bb1c97ea655e69f31a575, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15202", url: "https://www.suse.com/security/cve/CVE-2020-15202", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15202", }, { cve: "CVE-2020-15203", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15203", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, by controlling the `fill` argument of tf.strings.as_string, a malicious attacker is able to trigger a format string vulnerability due to the way the internal format use in a `printf` call is constructed. This may result in segmentation fault. The issue is patched in commit 33be22c65d86256e6826666662e40dbdfe70ee83, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15203", url: "https://www.suse.com/security/cve/CVE-2020-15203", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15203", }, { cve: "CVE-2020-15204", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15204", }, ], notes: [ { category: "general", text: "In eager mode, TensorFlow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1 does not set the session state. Hence, calling `tf.raw_ops.GetSessionHandle` or `tf.raw_ops.GetSessionHandleV2` results in a null pointer dereference In linked snippet, in eager mode, `ctx->session_state()` returns `nullptr`. Since code immediately dereferences this, we get a segmentation fault. The issue is patched in commit 9a133d73ae4b4664d22bd1aa6d654fec13c52ee1, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15204", url: "https://www.suse.com/security/cve/CVE-2020-15204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15204", }, { cve: "CVE-2020-15205", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15205", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks validation. This allows a user to pass values that can cause heap overflow errors and even leak contents of memory In the linked code snippet, all the binary strings after `ee ff` are contents from the memory stack. Since these can contain return addresses, this data leak can be used to defeat ASLR. The issue is patched in commit 0462de5b544ed4731aa2fb23946ac22c01856b80, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15205", url: "https://www.suse.com/security/cve/CVE-2020-15205", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-15205", }, { cve: "CVE-2020-15206", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15206", }, ], notes: [ { category: "general", text: "In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, changing the TensorFlow's `SavedModel` protocol buffer and altering the name of required keys results in segfaults and data corruption while loading the model. This can cause a denial of service in products using `tensorflow-serving` or other inference-as-a-service installments. Fixed were added in commits f760f88b4267d981e13f4b302c437ae800445968 and fcfef195637c6e365577829c4d67681695956e7d (both going into TensorFlow 2.2.0 and 2.3.0 but not yet backported to earlier versions). However, this was not enough, as #41097 reports a different failure mode. The issue is patched in commit adf095206f25471e864a8e63a0f1caef53a0e3a6, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15206", url: "https://www.suse.com/security/cve/CVE-2020-15206", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15206", }, { cve: "CVE-2020-15207", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15207", }, ], notes: [ { category: "general", text: "In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python's indexing with negative values, TFLite uses `ResolveAxis` to convert negative values to positive indices. However, the only check that the converted index is now valid is only present in debug builds. If the `DCHECK` does not trigger, then code execution moves ahead with a negative index. This, in turn, results in accessing data out of bounds which results in segfaults and/or data corruption. The issue is patched in commit 2d88f470dea2671b430884260f3626b1fe99830a, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15207", url: "https://www.suse.com/security/cve/CVE-2020-15207", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2020-15207", }, { cve: "CVE-2020-15208", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15208", }, ], notes: [ { category: "general", text: "In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, when determining the common dimension size of two tensors, TFLite uses a `DCHECK` which is no-op outside of debug compilation modes. Since the function always returns the dimension of the first tensor, malicious attackers can craft cases where this is larger than that of the second tensor. In turn, this would result in reads/writes outside of bounds since the interpreter will wrongly assume that there is enough data in both tensors. The issue is patched in commit 8ee24e7949a203d234489f9da2c5bf45a7d5157d, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15208", url: "https://www.suse.com/security/cve/CVE-2020-15208", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-15208", }, { cve: "CVE-2020-15209", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-15209", }, ], notes: [ { category: "general", text: "In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, a crafted TFLite model can force a node to have as input a tensor backed by a `nullptr` buffer. This can be achieved by changing a buffer index in the flatbuffer serialization to convert a read-only tensor to a read-write one. The runtime assumes that these buffers are written to before a possible read, hence they are initialized with `nullptr`. However, by changing the buffer index for a tensor and implicitly converting that tensor to be a read-write one, as there is nothing in the model that writes to it, we get a null pointer dereference. The issue is patched in commit 0b5662bc, and is released in TensorFlow versions 1.15.4, 2.0.3, 2.1.2, 2.2.1, or 2.3.1.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-15209", url: "https://www.suse.com/security/cve/CVE-2020-15209", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-15209", }, { cve: "CVE-2020-26266", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-26266", }, ], notes: [ { category: "general", text: "In affected versions of TensorFlow under certain cases a saved model can trigger use of uninitialized values during code execution. This is caused by having tensor buffers be filled with the default value of the type but forgetting to default initialize the quantized floating point types in Eigen. This is fixed in versions 1.15.5, 2.0.4, 2.1.3, 2.2.2, 2.3.2, and 2.4.0.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-26266", url: "https://www.suse.com/security/cve/CVE-2020-26266", }, { category: "external", summary: "SUSE Bug 1179946 for CVE-2020-26266", url: "https://bugzilla.suse.com/1179946", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2020-26266", }, { cve: "CVE-2020-26270", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-26270", }, ], notes: [ { category: "general", text: "In affected versions of TensorFlow running an LSTM/GRU model where the LSTM/GRU layer receives an input with zero-length results in a CHECK failure when using the CUDA backend. This can result in a query-of-death vulnerability, via denial of service, if users can control the input to the layer. This is fixed in versions 1.15.5, 2.0.4, 2.1.3, 2.2.2, 2.3.2, and 2.4.0.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-26270", url: "https://www.suse.com/security/cve/CVE-2020-26270", }, { category: "external", summary: "SUSE Bug 1179938 for CVE-2020-26270", url: "https://bugzilla.suse.com/1179938", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "low", }, ], title: "CVE-2020-26270", }, { cve: "CVE-2021-22922", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-22922", }, ], notes: [ { category: "general", text: "When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The metalink XML file points out to the client how to get the same contentfrom a set of different URLs, potentially hosted by different servers and theclient can then download the file from one or several of them. In a serial orparallel manner.If one of the servers hosting the contents has been breached and the contentsof the specific file on that server is replaced with a modified payload, curlshould detect this when the hash of the file mismatches after a completeddownload. It should remove the contents and instead try getting the contentsfrom another URL. This is not done, and instead such a hash mismatch is onlymentioned in text and the potentially malicious content is kept in the file ondisk.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-22922", url: "https://www.suse.com/security/cve/CVE-2021-22922", }, { category: "external", summary: "SUSE Bug 1188217 for CVE-2021-22922", url: "https://bugzilla.suse.com/1188217", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-22922", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2021-22922", }, { cve: "CVE-2021-22923", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-22923", }, ], notes: [ { category: "general", text: "When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download the contents from. Often contrary to the user's expectations and intentions and without telling the user it happened.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-22923", url: "https://www.suse.com/security/cve/CVE-2021-22923", }, { category: "external", summary: "SUSE Bug 1188218 for CVE-2021-22923", url: "https://bugzilla.suse.com/1188218", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-22923", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2021-22923", }, { cve: "CVE-2021-22926", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-22926", }, ], notes: [ { category: "general", text: "libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certificate by name or with a file name - using the same option. If the name exists as a file, it will be used instead of by name.If the appliction runs with a current working directory that is writable by other users (like `/tmp`), a malicious user can create a file name with the same name as the app wants to use by name, and thereby trick the application to use the file based cert instead of the one referred to by name making libcurl send the wrong client certificate in the TLS connection handshake.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-22926", url: "https://www.suse.com/security/cve/CVE-2021-22926", }, { category: "external", summary: "SUSE Bug 1188510 for CVE-2021-22926", url: "https://bugzilla.suse.com/1188510", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-22926", url: "https://bugzilla.suse.com/1192447", }, { category: "external", summary: "SUSE Bug 1192757 for CVE-2021-22926", url: "https://bugzilla.suse.com/1192757", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-22926", }, { cve: "CVE-2021-37635", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37635", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of sparse reduction operations in TensorFlow can trigger accesses outside of bounds of heap allocated data. The [implementation](https://github.com/tensorflow/tensorflow/blob/a1bc56203f21a5a4995311825ffaba7a670d7747/tensorflow/core/kernels/sparse_reduce_op.cc#L217-L228) fails to validate that each reduction group does not overflow and that each corresponding index does not point to outside the bounds of the input tensor. We have patched the issue in GitHub commit 87158f43f05f2720a374f3e6d22a7aaa3a33f750. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37635", url: "https://www.suse.com/security/cve/CVE-2021-37635", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37635", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37635", }, { cve: "CVE-2021-37636", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37636", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.SparseDenseCwiseDiv` is vulnerable to a division by 0 error. The [implementation](https://github.com/tensorflow/tensorflow/blob/a1bc56203f21a5a4995311825ffaba7a670d7747/tensorflow/core/kernels/sparse_dense_binary_op_shared.cc#L56) uses a common class for all binary operations but fails to treat the division by 0 case separately. We have patched the issue in GitHub commit d9204be9f49520cdaaeb2541d1dc5187b23f31d9. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37636", url: "https://www.suse.com/security/cve/CVE-2021-37636", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37636", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37636", }, { cve: "CVE-2021-37637", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37637", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. It is possible to trigger a null pointer dereference in TensorFlow by passing an invalid input to `tf.raw_ops.CompressElement`. The [implementation](https://github.com/tensorflow/tensorflow/blob/47a06f40411a69c99f381495f490536972152ac0/tensorflow/core/data/compression_utils.cc#L34) was accessing the size of a buffer obtained from the return of a separate function call before validating that said buffer is valid. We have patched the issue in GitHub commit 5dc7f6981fdaf74c8c5be41f393df705841fb7c5. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37637", url: "https://www.suse.com/security/cve/CVE-2021-37637", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37637", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37637", }, { cve: "CVE-2021-37638", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37638", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. Sending invalid argument for `row_partition_types` of `tf.raw_ops.RaggedTensorToTensor` API results in a null pointer dereference and undefined behavior. The [implementation](https://github.com/tensorflow/tensorflow/blob/47a06f40411a69c99f381495f490536972152ac0/tensorflow/core/kernels/ragged_tensor_to_tensor_op.cc#L328) accesses the first element of a user supplied list of values without validating that the provided list is not empty. We have patched the issue in GitHub commit 301ae88b331d37a2a16159b65b255f4f9eb39314. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37638", url: "https://www.suse.com/security/cve/CVE-2021-37638", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37638", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37638", }, { cve: "CVE-2021-37639", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37639", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. When restoring tensors via raw APIs, if the tensor name is not provided, TensorFlow can be tricked into dereferencing a null pointer. Alternatively, attackers can read memory outside the bounds of heap allocated data by providing some tensor names but not enough for a successful restoration. The [implementation](https://github.com/tensorflow/tensorflow/blob/47a06f40411a69c99f381495f490536972152ac0/tensorflow/core/kernels/save_restore_tensor.cc#L158-L159) retrieves the tensor list corresponding to the `tensor_name` user controlled input and immediately retrieves the tensor at the restoration index (controlled via `preferred_shard` argument). This occurs without validating that the provided list has enough values. If the list is empty this results in dereferencing a null pointer (undefined behavior). If, however, the list has some elements, if the restoration index is outside the bounds this results in heap OOB read. We have patched the issue in GitHub commit 9e82dce6e6bd1f36a57e08fa85af213e2b2f2622. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37639", url: "https://www.suse.com/security/cve/CVE-2021-37639", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37639", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37639", }, { cve: "CVE-2021-37640", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37640", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.SparseReshape` can be made to trigger an integral division by 0 exception. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/reshape_util.cc#L176-L181) calls the reshaping functor whenever there is at least an index in the input but does not check that shape of the input or the target shape have both a non-zero number of elements. The [reshape functor](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/reshape_util.cc#L40-L78) blindly divides by the dimensions of the target shape. Hence, if this is not checked, code will result in a division by 0. We have patched the issue in GitHub commit 4923de56ec94fff7770df259ab7f2288a74feb41. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1 as this is the other affected version.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37640", url: "https://www.suse.com/security/cve/CVE-2021-37640", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37640", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37640", }, { cve: "CVE-2021-37641", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37641", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions if the arguments to `tf.raw_ops.RaggedGather` don't determine a valid ragged tensor code can trigger a read from outside of bounds of heap allocated buffers. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/ragged_gather_op.cc#L70) directly reads the first dimension of a tensor shape before checking that said tensor has rank of at least 1 (i.e., it is not a scalar). Furthermore, the implementation does not check that the list given by `params_nested_splits` is not an empty list of tensors. We have patched the issue in GitHub commit a2b743f6017d7b97af1fe49087ae15f0ac634373. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37641", url: "https://www.suse.com/security/cve/CVE-2021-37641", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37641", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37641", }, { cve: "CVE-2021-37642", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37642", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.ResourceScatterDiv` is vulnerable to a division by 0 error. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/resource_variable_ops.cc#L865) uses a common class for all binary operations but fails to treat the division by 0 case separately. We have patched the issue in GitHub commit 4aacb30888638da75023e6601149415b39763d76. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37642", url: "https://www.suse.com/security/cve/CVE-2021-37642", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37642", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37642", }, { cve: "CVE-2021-37643", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37643", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. If a user does not provide a valid padding value to `tf.raw_ops.MatrixDiagPartOp`, then the code triggers a null pointer dereference (if input is empty) or produces invalid behavior, ignoring all values after the first. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/linalg/matrix_diag_op.cc#L89) reads the first value from a tensor buffer without first checking that the tensor has values to read from. We have patched the issue in GitHub commit 482da92095c4d48f8784b1f00dda4f81c28d2988. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37643", url: "https://www.suse.com/security/cve/CVE-2021-37643", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37643", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37643", }, { cve: "CVE-2021-37644", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37644", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to `num_elements` list argument of `tf.raw_ops.TensorListReserve` causes the runtime to abort the process due to reallocating a `std::vector` to have a negative number of elements. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/list_kernels.cc#L312) calls `std::vector.resize()` with the new size controlled by input given by the user, without checking that this input is valid. We have patched the issue in GitHub commit 8a6e874437670045e6c7dc6154c7412b4a2135e2. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37644", url: "https://www.suse.com/security/cve/CVE-2021-37644", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37644", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37644", }, { cve: "CVE-2021-37645", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37645", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.QuantizeAndDequantizeV4Grad` is vulnerable to an integer overflow issue caused by converting a signed integer value to an unsigned one and then allocating memory based on this value. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/quantize_and_dequantize_op.cc#L126) uses the `axis` value as the size argument to `absl::InlinedVector` constructor. But, the constructor uses an unsigned type for the argument, so the implicit conversion transforms the negative value to a large integer. We have patched the issue in GitHub commit 96f364a1ca3009f98980021c4b32be5fdcca33a1. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, and TensorFlow 2.4.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37645", url: "https://www.suse.com/security/cve/CVE-2021-37645", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37645", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37645", }, { cve: "CVE-2021-37646", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37646", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of `tf.raw_ops.StringNGrams` is vulnerable to an integer overflow issue caused by converting a signed integer value to an unsigned one and then allocating memory based on this value. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/string_ngrams_op.cc#L184) calls `reserve` on a `tstring` with a value that sometimes can be negative if user supplies negative `ngram_widths`. The `reserve` method calls `TF_TString_Reserve` which has an `unsigned long` argument for the size of the buffer. Hence, the implicit conversion transforms the negative value to a large integer. We have patched the issue in GitHub commit c283e542a3f422420cfdb332414543b62fc4e4a5. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37646", url: "https://www.suse.com/security/cve/CVE-2021-37646", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37646", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37646", }, { cve: "CVE-2021-37647", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37647", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. When a user does not supply arguments that determine a valid sparse tensor, `tf.raw_ops.SparseTensorSliceDataset` implementation can be made to dereference a null pointer. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/data/sparse_tensor_slice_dataset_op.cc#L240-L251) has some argument validation but fails to consider the case when either `indices` or `values` are provided for an empty sparse tensor when the other is not. If `indices` is empty, then [code that performs validation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/data/sparse_tensor_slice_dataset_op.cc#L260-L261) (i.e., checking that the indices are monotonically increasing) results in a null pointer dereference. If `indices` as provided by the user is empty, then `indices` in the C++ code above is backed by an empty `std::vector`, hence calling `indices->dim_size(0)` results in null pointer dereferencing (same as calling `std::vector::at()` on an empty vector). We have patched the issue in GitHub commit 02cc160e29d20631de3859c6653184e3f876b9d7. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37647", url: "https://www.suse.com/security/cve/CVE-2021-37647", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37647", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37647", }, { cve: "CVE-2021-37648", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37648", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the code for `tf.raw_ops.SaveV2` does not properly validate the inputs and an attacker can trigger a null pointer dereference. The [implementation](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/kernels/save_restore_v2_ops.cc) uses `ValidateInputs` to check that the input arguments are valid. This validation would have caught the illegal state represented by the reproducer above. However, the validation uses `OP_REQUIRES` which translates to setting the `Status` object of the current `OpKernelContext` to an error status, followed by an empty `return` statement which just terminates the execution of the function it is present in. However, this does not mean that the kernel execution is finalized: instead, execution continues from the next line in `Compute` that follows the call to `ValidateInputs`. This is equivalent to lacking the validation. We have patched the issue in GitHub commit 9728c60e136912a12d99ca56e106b7cce7af5986. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37648", url: "https://www.suse.com/security/cve/CVE-2021-37648", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37648", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37648", }, { cve: "CVE-2021-37649", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37649", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. The code for `tf.raw_ops.UncompressElement` can be made to trigger a null pointer dereference. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/data/experimental/compression_ops.cc#L50-L53) obtains a pointer to a `CompressedElement` from a `Variant` tensor and then proceeds to dereference it for decompressing. There is no check that the `Variant` tensor contained a `CompressedElement`, so the pointer is actually `nullptr`. We have patched the issue in GitHub commit 7bdf50bb4f5c54a4997c379092888546c97c3ebd. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37649", url: "https://www.suse.com/security/cve/CVE-2021-37649", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37649", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37649", }, { cve: "CVE-2021-37650", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37650", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.ExperimentalDatasetToTFRecord` and `tf.raw_ops.DatasetToTFRecord` can trigger heap buffer overflow and segmentation fault. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/data/experimental/to_tf_record_op.cc#L93-L102) assumes that all records in the dataset are of string type. However, there is no check for that, and the example given above uses numeric types. We have patched the issue in GitHub commit e0b6e58c328059829c3eb968136f17aa72b6c876. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37650", url: "https://www.suse.com/security/cve/CVE-2021-37650", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37650", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37650", }, { cve: "CVE-2021-37651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37651", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.FractionalAvgPoolGrad` can be tricked into accessing data outside of bounds of heap allocated buffers. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/fractional_avg_pool_op.cc#L205) does not validate that the input tensor is non-empty. Thus, code constructs an empty `EigenDoubleMatrixMap` and then accesses this buffer with indices that are outside of the empty area. We have patched the issue in GitHub commit 0f931751fb20f565c4e94aa6df58d54a003cdb30. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37651", url: "https://www.suse.com/security/cve/CVE-2021-37651", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37651", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37651", }, { cve: "CVE-2021-37652", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37652", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for `tf.raw_ops.BoostedTreesCreateEnsemble` can result in a use after free error if an attacker supplies specially crafted arguments. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/boosted_trees/resource_ops.cc#L55) uses a reference counted resource and decrements the refcount if the initialization fails, as it should. However, when the code was written, the resource was represented as a naked pointer but later refactoring has changed it to be a smart pointer. Thus, when the pointer leaves the scope, a subsequent `free`-ing of the resource occurs, but this fails to take into account that the refcount has already reached 0, thus the resource has been already freed. During this double-free process, members of the resource object are accessed for cleanup but they are invalid as the entire resource has been freed. We have patched the issue in GitHub commit 5ecec9c6fbdbc6be03295685190a45e7eee726ab. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37652", url: "https://www.suse.com/security/cve/CVE-2021-37652", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37652", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37652", }, { cve: "CVE-2021-37653", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37653", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a crash via a floating point exception in `tf.raw_ops.ResourceGather`. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/resource_variable_ops.cc#L725-L731) computes the value of a value, `batch_size`, and then divides by it without checking that this value is not 0. We have patched the issue in GitHub commit ac117ee8a8ea57b73d34665cdf00ef3303bc0b11. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37653", url: "https://www.suse.com/security/cve/CVE-2021-37653", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37653", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37653", }, { cve: "CVE-2021-37654", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37654", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a crash via a `CHECK`-fail in debug builds of TensorFlow using `tf.raw_ops.ResourceGather` or a read from outside the bounds of heap allocated data in the same API in a release build. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/resource_variable_ops.cc#L660-L668) does not check that the `batch_dims` value that the user supplies is less than the rank of the input tensor. Since the implementation uses several for loops over the dimensions of `tensor`, this results in reading data from outside the bounds of heap allocated buffer backing the tensor. We have patched the issue in GitHub commit bc9c546ce7015c57c2f15c168b3d9201de679a1d. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37654", url: "https://www.suse.com/security/cve/CVE-2021-37654", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37654", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37654", }, { cve: "CVE-2021-37655", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37655", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a read from outside of bounds of heap allocated data by sending invalid arguments to `tf.raw_ops.ResourceScatterUpdate`. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/resource_variable_ops.cc#L919-L923) has an incomplete validation of the relationship between the shapes of `indices` and `updates`: instead of checking that the shape of `indices` is a prefix of the shape of `updates` (so that broadcasting can happen), code only checks that the number of elements in these two tensors are in a divisibility relationship. We have patched the issue in GitHub commit 01cff3f986259d661103412a20745928c727326f. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37655", url: "https://www.suse.com/security/cve/CVE-2021-37655", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37655", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.3, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37655", }, { cve: "CVE-2021-37656", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37656", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.RaggedTensorToSparse`. The [implementation](https://github.com/tensorflow/tensorflow/blob/f24faa153ad31a4b51578f8181d3aaab77a1ddeb/tensorflow/core/kernels/ragged_tensor_to_sparse_kernel.cc#L30) has an incomplete validation of the splits values: it does not check that they are in increasing order. We have patched the issue in GitHub commit 1071f554dbd09f7e101324d366eec5f4fe5a3ece. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37656", url: "https://www.suse.com/security/cve/CVE-2021-37656", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37656", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37656", }, { cve: "CVE-2021-37657", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37657", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type `tf.raw_ops.MatrixDiagV*`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/linalg/matrix_diag_op.cc) has incomplete validation that the value of `k` is a valid tensor. We have check that this value is either a scalar or a vector, but there is no check for the number of elements. If this is an empty tensor, then code that accesses the first element of the tensor is wrong. We have patched the issue in GitHub commit f2a673bd34f0d64b8e40a551ac78989d16daad09. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37657", url: "https://www.suse.com/security/cve/CVE-2021-37657", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37657", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37657", }, { cve: "CVE-2021-37658", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37658", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all operations of type `tf.raw_ops.MatrixSetDiagV*`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/linalg/matrix_diag_op.cc) has incomplete validation that the value of `k` is a valid tensor. We have check that this value is either a scalar or a vector, but there is no check for the number of elements. If this is an empty tensor, then code that accesses the first element of the tensor is wrong. We have patched the issue in GitHub commit ff8894044dfae5568ecbf2ed514c1a37dc394f1b. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37658", url: "https://www.suse.com/security/cve/CVE-2021-37658", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37658", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37658", }, { cve: "CVE-2021-37659", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37659", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in all binary cwise operations that don't require broadcasting (e.g., gradients of binary cwise operations). The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/cwise_ops_common.h#L264) assumes that the two inputs have exactly the same number of elements but does not check that. Hence, when the eigen functor executes it triggers heap OOB reads and undefined behavior due to binding to nullptr. We have patched the issue in GitHub commit 93f428fd1768df147171ed674fee1fc5ab8309ec. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37659", url: "https://www.suse.com/security/cve/CVE-2021-37659", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37659", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37659", }, { cve: "CVE-2021-37660", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37660", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause a floating point exception by calling inplace operations with crafted arguments that would result in a division by 0. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/inplace_ops.cc#L283) has a logic error: it should skip processing if `x` and `v` are empty but the code uses `||` instead of `&&`. We have patched the issue in GitHub commit e86605c0a336c088b638da02135ea6f9f6753618. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37660", url: "https://www.suse.com/security/cve/CVE-2021-37660", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37660", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37660", }, { cve: "CVE-2021-37661", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37661", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause a denial of service in `boosted_trees_create_quantile_stream_resource` by using negative arguments. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/quantile_ops.cc#L96) does not validate that `num_streams` only contains non-negative numbers. In turn, [this results in using this value to allocate memory](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/quantiles/quantile_stream_resource.h#L31-L40). However, `reserve` receives an unsigned integer so there is an implicit conversion from a negative value to a large positive unsigned. This results in a crash from the standard library. We have patched the issue in GitHub commit 8a84f7a2b5a2b27ecf88d25bad9ac777cd2f7992. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37661", url: "https://www.suse.com/security/cve/CVE-2021-37661", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37661", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37661", }, { cve: "CVE-2021-37662", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37662", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can generate undefined behavior via a reference binding to nullptr in `BoostedTreesCalculateBestGainsPerFeature` and similar attack can occur in `BoostedTreesCalculateBestFeatureSplitV2`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/stats_ops.cc) does not validate the input values. We have patched the issue in GitHub commit 9c87c32c710d0b5b53dc6fd3bfde4046e1f7a5ad and in commit 429f009d2b2c09028647dd4bb7b3f6f414bbaad7. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37662", url: "https://www.suse.com/security/cve/CVE-2021-37662", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37662", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37662", }, { cve: "CVE-2021-37663", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37663", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions due to incomplete validation in `tf.raw_ops.QuantizeV2`, an attacker can trigger undefined behavior via binding a reference to a null pointer or can access data outside the bounds of heap allocated arrays. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/quantize_op.cc#L59) has some validation but does not check that `min_range` and `max_range` both have the same non-zero number of elements. If `axis` is provided (i.e., not `-1`), then validation should check that it is a value in range for the rank of `input` tensor and then the lengths of `min_range` and `max_range` inputs match the `axis` dimension of the `input` tensor. We have patched the issue in GitHub commit 6da6620efad397c85493b8f8667b821403516708. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37663", url: "https://www.suse.com/security/cve/CVE-2021-37663", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37663", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37663", }, { cve: "CVE-2021-37664", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37664", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can read from outside of bounds of heap allocated data by sending specially crafted illegal arguments to `BoostedTreesSparseCalculateBestFeatureSplit`. The [implementation](https://github.com/tensorflow/tensorflow/blob/84d053187cb80d975ef2b9684d4b61981bca0c41/tensorflow/core/kernels/boosted_trees/stats_ops.cc) needs to validate that each value in `stats_summary_indices` is in range. We have patched the issue in GitHub commit e84c975313e8e8e38bb2ea118196369c45c51378. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37664", url: "https://www.suse.com/security/cve/CVE-2021-37664", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37664", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37664", }, { cve: "CVE-2021-37665", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37665", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions due to incomplete validation in MKL implementation of requantization, an attacker can trigger undefined behavior via binding a reference to a null pointer or can access data outside the bounds of heap allocated arrays. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/mkl/mkl_requantization_range_per_channel_op.cc) does not validate the dimensions of the `input` tensor. A similar issue occurs in `MklRequantizePerChannelOp`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/mkl/mkl_requantize_per_channel_op.cc) does not perform full validation for all the input arguments. We have patched the issue in GitHub commit 9e62869465573cb2d9b5053f1fa02a81fce21d69 and in the Github commit 203214568f5bc237603dbab6e1fd389f1572f5c9. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37665", url: "https://www.suse.com/security/cve/CVE-2021-37665", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37665", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37665", }, { cve: "CVE-2021-37666", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37666", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.RaggedTensorToVariant`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/ragged_tensor_to_variant_op.cc#L129) has an incomplete validation of the splits values, missing the case when the argument would be empty. We have patched the issue in GitHub commit be7a4de6adfbd303ce08be4332554dff70362612. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37666", url: "https://www.suse.com/security/cve/CVE-2021-37666", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37666", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37666", }, { cve: "CVE-2021-37667", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37667", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.UnicodeEncode`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/unicode_ops.cc#L533-L539) reads the first dimension of the `input_splits` tensor before validating that this tensor is not empty. We have patched the issue in GitHub commit 2e0ee46f1a47675152d3d865797a18358881d7a6. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37667", url: "https://www.suse.com/security/cve/CVE-2021-37667", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37667", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37667", }, { cve: "CVE-2021-37668", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37668", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using `tf.raw_ops.UnravelIndex` by triggering a division by 0. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/unravel_index_op.cc#L36) does not check that the tensor subsumed by `dims` is not empty. Hence, if one element of `dims` is 0, the implementation does a division by 0. We have patched the issue in GitHub commit a776040a5e7ebf76eeb7eb923bf1ae417dd4d233. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37668", url: "https://www.suse.com/security/cve/CVE-2021-37668", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37668", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37668", }, { cve: "CVE-2021-37669", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37669", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using `tf.raw_ops.NonMaxSuppressionV5` by triggering a division by 0. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/image/non_max_suppression_op.cc#L170-L271) uses a user controlled argument to resize a `std::vector`. However, as `std::vector::resize` takes the size argument as a `size_t` and `output_size` is an `int`, there is an implicit conversion to unsigned. If the attacker supplies a negative value, this conversion results in a crash. A similar issue occurs in `CombinedNonMaxSuppression`. We have patched the issue in GitHub commit 3a7362750d5c372420aa8f0caf7bf5b5c3d0f52d and commit [b5cdbf12ffcaaffecf98f22a6be5a64bb96e4f58. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37669", url: "https://www.suse.com/security/cve/CVE-2021-37669", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37669", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37669", }, { cve: "CVE-2021-37670", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37670", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can read from outside of bounds of heap allocated data by sending specially crafted illegal arguments to `tf.raw_ops.UpperBound`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/searchsorted_op.cc#L85-L104) does not validate the rank of `sorted_input` argument. A similar issue occurs in `tf.raw_ops.LowerBound`. We have patched the issue in GitHub commit 42459e4273c2e47a3232cc16c4f4fff3b3a35c38. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37670", url: "https://www.suse.com/security/cve/CVE-2021-37670", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37670", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37670", }, { cve: "CVE-2021-37671", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37671", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.Map*` and `tf.raw_ops.OrderedMap*` operations. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/map_stage_op.cc#L222-L248) has a check in place to ensure that `indices` is in ascending order, but does not check that `indices` is not empty. We have patched the issue in GitHub commit 532f5c5a547126c634fefd43bbad1dc6417678ac. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37671", url: "https://www.suse.com/security/cve/CVE-2021-37671", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37671", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37671", }, { cve: "CVE-2021-37672", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37672", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can read from outside of bounds of heap allocated data by sending specially crafted illegal arguments to `tf.raw_ops.SdcaOptimizerV2`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/sdca_internal.cc#L320-L353) does not check that the length of `example_labels` is the same as the number of examples. We have patched the issue in GitHub commit a4e138660270e7599793fa438cd7b2fc2ce215a6. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37672", url: "https://www.suse.com/security/cve/CVE-2021-37672", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37672", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37672", }, { cve: "CVE-2021-37673", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37673", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a denial of service via a `CHECK`-fail in `tf.raw_ops.MapStage`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/map_stage_op.cc#L513) does not check that the `key` input is a valid non-empty tensor. We have patched the issue in GitHub commit d7de67733925de196ec8863a33445b73f9562d1d. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37673", url: "https://www.suse.com/security/cve/CVE-2021-37673", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37673", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37673", }, { cve: "CVE-2021-37674", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37674", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a denial of service via a segmentation fault in `tf.raw_ops.MaxPoolGrad` caused by missing validation. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/maxpooling_op.cc) misses some validation for the `orig_input` and `orig_output` tensors. The fixes for CVE-2021-29579 were incomplete. We have patched the issue in GitHub commit 136b51f10903e044308cf77117c0ed9871350475. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37674", url: "https://www.suse.com/security/cve/CVE-2021-37674", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37674", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37674", }, { cve: "CVE-2021-37675", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37675", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions most implementations of convolution operators in TensorFlow are affected by a division by 0 vulnerability where an attacker can trigger a denial of service via a crash. The shape inference [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/framework/common_shape_fns.cc#L577) is missing several validations before doing divisions and modulo operations. We have patched the issue in GitHub commit 8a793b5d7f59e37ac7f3cd0954a750a2fe76bad4. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37675", url: "https://www.suse.com/security/cve/CVE-2021-37675", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37675", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37675", }, { cve: "CVE-2021-37676", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37676", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in `tf.raw_ops.SparseFillEmptyRows`. The shape inference [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/ops/sparse_ops.cc#L608-L634) does not validate that the input arguments are not empty tensors. We have patched the issue in GitHub commit 578e634b4f1c1c684d4b4294f9e5281b2133b3ed. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37676", url: "https://www.suse.com/security/cve/CVE-2021-37676", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37676", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37676", }, { cve: "CVE-2021-37677", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37677", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the shape inference code for `tf.raw_ops.Dequantize` has a vulnerability that could trigger a denial of service via a segfault if an attacker provides invalid arguments. The shape inference [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/ops/array_ops.cc#L2999-L3014) uses `axis` to select between two different values for `minmax_rank` which is then used to retrieve tensor dimensions. However, code assumes that `axis` can be either `-1` or a value greater than `-1`, with no validation for the other values. We have patched the issue in GitHub commit da857cfa0fde8f79ad0afdbc94e88b5d4bbec764. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37677", url: "https://www.suse.com/security/cve/CVE-2021-37677", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37677", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37677", }, { cve: "CVE-2021-37678", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37678", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions TensorFlow and Keras can be tricked to perform arbitrary code execution when deserializing a Keras model from YAML format. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/python/keras/saving/model_config.py#L66-L104) uses `yaml.unsafe_load` which can perform arbitrary code execution on the input. Given that YAML format support requires a significant amount of work, we have removed it for now. We have patched the issue in GitHub commit 23d6383eb6c14084a8fc3bdf164043b974818012. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37678", url: "https://www.suse.com/security/cve/CVE-2021-37678", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37678", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37678", }, { cve: "CVE-2021-37679", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37679", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions it is possible to nest a `tf.map_fn` within another `tf.map_fn` call. However, if the input tensor is a `RaggedTensor` and there is no function signature provided, code assumes the output is a fully specified tensor and fills output buffer with uninitialized contents from the heap. The `t` and `z` outputs should be identical, however this is not the case. The last row of `t` contains data from the heap which can be used to leak other memory information. The bug lies in the conversion from a `Variant` tensor to a `RaggedTensor`. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/core/kernels/ragged_tensor_from_variant_op.cc#L177-L190) does not check that all inner shapes match and this results in the additional dimensions. The same implementation can result in data loss, if input tensor is tweaked. We have patched the issue in GitHub commit 4e2565483d0ffcadc719bd44893fb7f609bb5f12. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37679", url: "https://www.suse.com/security/cve/CVE-2021-37679", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37679", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37679", }, { cve: "CVE-2021-37680", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37680", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of fully connected layers in TFLite is [vulnerable to a division by zero error](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/fully_connected.cc#L226). We have patched the issue in GitHub commit 718721986aa137691ee23f03638867151f74935f. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37680", url: "https://www.suse.com/security/cve/CVE-2021-37680", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37680", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37680", }, { cve: "CVE-2021-37681", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37681", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of SVDF in TFLite is [vulnerable to a null pointer error](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/svdf.cc#L300-L313). The [`GetVariableInput` function](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/kernel_util.cc#L115-L119) can return a null pointer but `GetTensorData` assumes that the argument is always a valid tensor. Furthermore, because `GetVariableInput` calls [`GetMutableInput`](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/kernel_util.cc#L82-L90) which might return `nullptr`, the `tensor->is_variable` expression can also trigger a null pointer exception. We have patched the issue in GitHub commit 5b048e87e4e55990dae6b547add4dae59f4e1c76. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37681", url: "https://www.suse.com/security/cve/CVE-2021-37681", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37681", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37681", }, { cve: "CVE-2021-37682", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37682", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. [For example](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/depthwise_conv.cc#L198-L200). The issue stems from the fact that `quantization.params` is only valid if `quantization.type` is different that `kTfLiteNoQuantization`. However, these checks are missing in large parts of the code. We have patched the issue in GitHub commits 537bc7c723439b9194a358f64d871dd326c18887, 4a91f2069f7145aab6ba2d8cfe41be8a110c18a5 and 8933b8a21280696ab119b63263babdb54c298538. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37682", url: "https://www.suse.com/security/cve/CVE-2021-37682", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37682", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37682", }, { cve: "CVE-2021-37683", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37683", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation of division in TFLite is [vulnerable to a division by 0 error](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/lite/kernels/div.cc). There is no check that the divisor tensor does not contain zero elements. We have patched the issue in GitHub commit 1e206baedf8bef0334cca3eb92bab134ef525a28. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37683", url: "https://www.suse.com/security/cve/CVE-2021-37683", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37683", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37683", }, { cve: "CVE-2021-37684", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37684", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementations of pooling in TFLite are vulnerable to division by 0 errors as there are no checks for divisors not being 0. We have patched the issue in GitHub commit [dfa22b348b70bb89d6d6ec0ff53973bacb4f4695](https://github.com/tensorflow/tensorflow/commit/dfa22b348b70bb89d6d6ec0ff53973bacb4f4695). The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37684", url: "https://www.suse.com/security/cve/CVE-2021-37684", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37684", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37684", }, { cve: "CVE-2021-37685", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37685", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions TFLite's [`expand_dims.cc`](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/expand_dims.cc#L36-L50) contains a vulnerability which allows reading one element outside of bounds of heap allocated data. If `axis` is a large negative value (e.g., `-100000`), then after the first `if` it would still be negative. The check following the `if` statement will pass and the `for` loop would read one element before the start of `input_dims.data` (when `i = 0`). We have patched the issue in GitHub commit d94ffe08a65400f898241c0374e9edc6fa8ed257. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37685", url: "https://www.suse.com/security/cve/CVE-2021-37685", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37685", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37685", }, { cve: "CVE-2021-37686", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37686", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions the strided slice implementation in TFLite has a logic bug which can allow an attacker to trigger an infinite loop. This arises from newly introduced support for [ellipsis in axis definition](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/strided_slice.cc#L103-L122). An attacker can craft a model such that `ellipsis_end_idx` is smaller than `i` (e.g., always negative). In this case, the inner loop does not increase `i` and the `continue` statement causes execution to skip over the preincrement at the end of the outer loop. We have patched the issue in GitHub commit dfa22b348b70bb89d6d6ec0ff53973bacb4f4695. TensorFlow 2.6.0 is the only affected version.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37686", url: "https://www.suse.com/security/cve/CVE-2021-37686", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37686", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37686", }, { cve: "CVE-2021-37687", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37687", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions TFLite's [`GatherNd` implementation](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/gather_nd.cc#L124) does not support negative indices but there are no checks for this situation. Hence, an attacker can read arbitrary data from the heap by carefully crafting a model with negative values in `indices`. Similar issue exists in [`Gather` implementation](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/gather.cc). We have patched the issue in GitHub commits bb6a0383ed553c286f87ca88c207f6774d5c4a8f and eb921122119a6b6e470ee98b89e65d721663179d. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37687", url: "https://www.suse.com/security/cve/CVE-2021-37687", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37687", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37687", }, { cve: "CVE-2021-37688", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37688", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can craft a TFLite model that would trigger a null pointer dereference, which would result in a crash and denial of service. The [implementation](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/internal/optimized/optimized_ops.h#L268-L285) unconditionally dereferences a pointer. We have patched the issue in GitHub commit 15691e456c7dc9bd6be203b09765b063bf4a380c. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37688", url: "https://www.suse.com/security/cve/CVE-2021-37688", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37688", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37688", }, { cve: "CVE-2021-37689", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37689", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can craft a TFLite model that would trigger a null pointer dereference, which would result in a crash and denial of service. This is caused by the MLIR optimization of `L2NormalizeReduceAxis` operator. The [implementation](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/compiler/mlir/lite/transforms/optimize.cc#L67-L70) unconditionally dereferences a pointer to an iterator to a vector without checking that the vector has elements. We have patched the issue in GitHub commit d6b57f461b39fd1aa8c1b870f1b974aac3554955. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37689", url: "https://www.suse.com/security/cve/CVE-2021-37689", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37689", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37689", }, { cve: "CVE-2021-37690", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37690", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions (such as `MutableHashTableShape`) produce extra output information in the form of a `ShapeAndType` struct. The shapes embedded in this struct are owned by an inference context that is cleaned up almost immediately; if the upstream code attempts to access this shape information, it can trigger a segfault. `ShapeRefiner` is mitigating this for normal output shapes by cloning them (and thus putting the newly created shape under ownership of an inference context that will not die), but we were not doing the same for shapes and types. This commit fixes that by doing similar logic on output shapes and types. We have patched the issue in GitHub commit ee119d4a498979525046fba1c3dd3f13a039fbb1. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37690", url: "https://www.suse.com/security/cve/CVE-2021-37690", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37690", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.6, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37690", }, { cve: "CVE-2021-37691", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37691", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can craft a TFLite model that would trigger a division by zero error in LSH [implementation](https://github.com/tensorflow/tensorflow/blob/149562d49faa709ea80df1d99fc41d005b81082a/tensorflow/lite/kernels/lsh_projection.cc#L118). We have patched the issue in GitHub commit 0575b640091680cfb70f4dd93e70658de43b94f9. The fix will be included in TensorFlow 2.6.0. We will also cherrypick thiscommit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37691", url: "https://www.suse.com/security/cve/CVE-2021-37691", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37691", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37691", }, { cve: "CVE-2021-37692", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-37692", }, ], notes: [ { category: "general", text: "TensorFlow is an end-to-end open source platform for machine learning. In affected versions under certain conditions, Go code can trigger a segfault in string deallocation. For string tensors, `C.TF_TString_Dealloc` is called during garbage collection within a finalizer function. However, tensor structure isn't checked until encoding to avoid a performance penalty. The current method for dealloc assumes that encoding succeeded, but segfaults when a string tensor is garbage collected whose encoding failed (e.g., due to mismatched dimensions). To fix this, the call to set the finalizer function is deferred until `NewTensor` returns and, if encoding failed for a string tensor, deallocs are determined based on bytes written. We have patched the issue in GitHub commit 8721ba96e5760c229217b594f6d2ba332beedf22. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, which is the other affected version.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-37692", url: "https://www.suse.com/security/cve/CVE-2021-37692", }, { category: "external", summary: "SUSE Bug 1189423 for CVE-2021-37692", url: "https://bugzilla.suse.com/1189423", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-37692", }, { cve: "CVE-2021-41195", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41195", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `tf.math.segment_*` operations results in a `CHECK`-fail related abort (and denial of service) if a segment id in `segment_ids` is large. This is similar to CVE-2021-29584 (and similar other reported vulnerabilities in TensorFlow, localized to specific APIs): the implementation (both on CPU and GPU) computes the output shape using `AddDim`. However, if the number of elements in the tensor overflows an `int64_t` value, `AddDim` results in a `CHECK` failure which provokes a `std::abort`. Instead, code should use `AddDimWithStatus`. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41195", url: "https://www.suse.com/security/cve/CVE-2021-41195", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41195", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41195", }, { cve: "CVE-2021-41196", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41196", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the Keras pooling layers can trigger a segfault if the size of the pool is 0 or if a dimension is negative. This is due to the TensorFlow's implementation of pooling operations where the values in the sliding window are not checked to be strictly positive. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41196", url: "https://www.suse.com/security/cve/CVE-2021-41196", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41196", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41196", }, { cve: "CVE-2021-41197", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41197", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions TensorFlow allows tensor to have a large number of dimensions and each dimension can be as large as desired. However, the total number of elements in a tensor must fit within an `int64_t`. If an overflow occurs, `MultiplyWithoutOverflow` would return a negative result. In the majority of TensorFlow codebase this then results in a `CHECK`-failure. Newer constructs exist which return a `Status` instead of crashing the binary. This is similar to CVE-2021-29584. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41197", url: "https://www.suse.com/security/cve/CVE-2021-41197", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41197", url: "https://bugzilla.suse.com/1192447", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2021-41197", url: "https://bugzilla.suse.com/1195545", }, { category: "external", summary: "SUSE Bug 1199814 for CVE-2021-41197", url: "https://bugzilla.suse.com/1199814", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41197", }, { cve: "CVE-2021-41198", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41198", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions if `tf.tile` is called with a large input argument then the TensorFlow process will crash due to a `CHECK`-failure caused by an overflow. The number of elements in the output tensor is too much for the `int64_t` type and the overflow is detected via a `CHECK` statement. This aborts the process. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41198", url: "https://www.suse.com/security/cve/CVE-2021-41198", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41198", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41198", }, { cve: "CVE-2021-41199", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41199", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions if `tf.image.resize` is called with a large input argument then the TensorFlow process will crash due to a `CHECK`-failure caused by an overflow. The number of elements in the output tensor is too much for the `int64_t` type and the overflow is detected via a `CHECK` statement. This aborts the process. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41199", url: "https://www.suse.com/security/cve/CVE-2021-41199", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41199", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41199", }, { cve: "CVE-2021-41200", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41200", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions if `tf.summary.create_file_writer` is called with non-scalar arguments code crashes due to a `CHECK`-fail. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41200", url: "https://www.suse.com/security/cve/CVE-2021-41200", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41200", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41200", }, { cve: "CVE-2021-41201", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41201", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affeced versions during execution, `EinsumHelper::ParseEquation()` is supposed to set the flags in `input_has_ellipsis` vector and `*output_has_ellipsis` boolean to indicate whether there is ellipsis in the corresponding inputs and output. However, the code only changes these flags to `true` and never assigns `false`. This results in unitialized variable access if callers assume that `EinsumHelper::ParseEquation()` always sets these flags. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41201", url: "https://www.suse.com/security/cve/CVE-2021-41201", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41201", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41201", }, { cve: "CVE-2021-41202", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41202", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the `tf.range` kernel, there is a conditional statement of type `int64 = condition ? int64 : double`. Due to C++ implicit conversion rules, both branches of the condition will be cast to `double` and the result would be truncated before the assignment. This result in overflows. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41202", url: "https://www.suse.com/security/cve/CVE-2021-41202", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41202", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41202", }, { cve: "CVE-2021-41203", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41203", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions an attacker can trigger undefined behavior, integer overflows, segfaults and `CHECK`-fail crashes if they can change saved checkpoints from outside of TensorFlow. This is because the checkpoints loading infrastructure is missing validation for invalid file formats. The fixes will be included in TensorFlow 2.7.0. We will also cherrypick these commits on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41203", url: "https://www.suse.com/security/cve/CVE-2021-41203", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41203", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41203", }, { cve: "CVE-2021-41204", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41204", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions during TensorFlow's Grappler optimizer phase, constant folding might attempt to deep copy a resource tensor. This results in a segfault, as these tensors are supposed to not change. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41204", url: "https://www.suse.com/security/cve/CVE-2021-41204", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41204", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41204", }, { cve: "CVE-2021-41205", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41205", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for the `QuantizeAndDequantizeV*` operations can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41205", url: "https://www.suse.com/security/cve/CVE-2021-41205", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41205", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41205", }, { cve: "CVE-2021-41206", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41206", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions several TensorFlow operations are missing validation for the shapes of the tensor arguments involved in the call. Depending on the API, this can result in undefined behavior and segfault or `CHECK`-fail related crashes but in some scenarios writes and reads from heap populated arrays are also possible. We have discovered these issues internally via tooling while working on improving/testing GPU op determinism. As such, we don't have reproducers and there will be multiple fixes for these issues. These fixes will be included in TensorFlow 2.7.0. We will also cherrypick these commits on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41206", url: "https://www.suse.com/security/cve/CVE-2021-41206", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41206", url: "https://bugzilla.suse.com/1192447", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2021-41206", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41206", }, { cve: "CVE-2021-41207", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41207", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `ParallelConcat` misses some input validation and can produce a division by 0. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41207", url: "https://www.suse.com/security/cve/CVE-2021-41207", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41207", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41207", }, { cve: "CVE-2021-41208", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41208", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the code for boosted trees in TensorFlow is still missing validation. As a result, attackers can trigger denial of service (via dereferencing `nullptr`s or via `CHECK`-failures) as well as abuse undefined behavior (binding references to `nullptr`s). An attacker can also read and write from heap buffers, depending on the API that gets used and the arguments that are passed to the call. Given that the boosted trees implementation in TensorFlow is unmaintained, it is recommend to no longer use these APIs. We will deprecate TensorFlow's boosted trees APIs in subsequent releases. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41208", url: "https://www.suse.com/security/cve/CVE-2021-41208", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41208", url: "https://bugzilla.suse.com/1192447", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2021-41208", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41208", }, { cve: "CVE-2021-41209", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41209", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementations for convolution operators trigger a division by 0 if passed empty filter tensor arguments. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41209", url: "https://www.suse.com/security/cve/CVE-2021-41209", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41209", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41209", }, { cve: "CVE-2021-41210", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41210", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference functions for `SparseCountSparseOutput` can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41210", url: "https://www.suse.com/security/cve/CVE-2021-41210", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41210", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41210", }, { cve: "CVE-2021-41211", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41211", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41211", url: "https://www.suse.com/security/cve/CVE-2021-41211", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41211", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41211", }, { cve: "CVE-2021-41212", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41212", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `tf.ragged.cross` can trigger a read outside of bounds of heap allocated array. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41212", url: "https://www.suse.com/security/cve/CVE-2021-41212", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41212", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41212", }, { cve: "CVE-2021-41213", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41213", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the code behind `tf.function` API can be made to deadlock when two `tf.function` decorated Python functions are mutually recursive. This occurs due to using a non-reentrant `Lock` Python object. Loading any model which contains mutually recursive functions is vulnerable. An attacker can cause denial of service by causing users to load such models and calling a recursive `tf.function`, although this is not a frequent scenario. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41213", url: "https://www.suse.com/security/cve/CVE-2021-41213", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41213", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41213", }, { cve: "CVE-2021-41214", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41214", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `tf.ragged.cross` has an undefined behavior due to binding a reference to `nullptr`. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41214", url: "https://www.suse.com/security/cve/CVE-2021-41214", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41214", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41214", }, { cve: "CVE-2021-41215", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41215", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `DeserializeSparse` can trigger a null pointer dereference. This is because the shape inference function assumes that the `serialize_sparse` tensor is a tensor with positive rank (and having `3` as the last dimension). The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41215", url: "https://www.suse.com/security/cve/CVE-2021-41215", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41215", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41215", }, { cve: "CVE-2021-41216", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41216", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference function for `Transpose` is vulnerable to a heap buffer overflow. This occurs whenever `perm` contains negative elements. The shape inference function does not validate that the indices in `perm` are all valid. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41216", url: "https://www.suse.com/security/cve/CVE-2021-41216", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41216", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41216", }, { cve: "CVE-2021-41217", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41217", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the process of building the control flow graph for a TensorFlow model is vulnerable to a null pointer exception when nodes that should be paired are not. This occurs because the code assumes that the first node in the pairing (e.g., an `Enter` node) always exists when encountering the second node (e.g., an `Exit` node). When this is not the case, `parent` is `nullptr` so dereferencing it causes a crash. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41217", url: "https://www.suse.com/security/cve/CVE-2021-41217", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41217", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41217", }, { cve: "CVE-2021-41218", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41218", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `AllToAll` can be made to execute a division by 0. This occurs whenever the `split_count` argument is 0. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41218", url: "https://www.suse.com/security/cve/CVE-2021-41218", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41218", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41218", }, { cve: "CVE-2021-41219", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41219", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the code for sparse matrix multiplication is vulnerable to undefined behavior via binding a reference to `nullptr`. This occurs whenever the dimensions of `a` or `b` are 0 or less. In the case on one of these is 0, an empty output tensor should be allocated (to conserve the invariant that output tensors are always allocated when the operation is successful) but nothing should be written to it (that is, we should return early from the kernel implementation). Otherwise, attempts to write to this empty tensor would result in heap OOB access. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41219", url: "https://www.suse.com/security/cve/CVE-2021-41219", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41219", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41219", }, { cve: "CVE-2021-41220", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41220", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the async implementation of `CollectiveReduceV2` suffers from a memory leak and a use after free. This occurs due to the asynchronous computation and the fact that objects that have been `std::move()`d from are still accessed. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41220", url: "https://www.suse.com/security/cve/CVE-2021-41220", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41220", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41220", }, { cve: "CVE-2021-41221", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41221", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for the `Cudnn*` operations in TensorFlow can be tricked into accessing invalid memory, via a heap buffer overflow. This occurs because the ranks of the `input`, `input_h` and `input_c` parameters are not validated, but code assumes they have certain values. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41221", url: "https://www.suse.com/security/cve/CVE-2021-41221", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41221", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41221", }, { cve: "CVE-2021-41222", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41222", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SplitV` can trigger a segfault is an attacker supplies negative arguments. This occurs whenever `size_splits` contains more than one value and at least one value is negative. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41222", url: "https://www.suse.com/security/cve/CVE-2021-41222", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41222", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41222", }, { cve: "CVE-2021-41223", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41223", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `FusedBatchNorm` kernels is vulnerable to a heap OOB access. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41223", url: "https://www.suse.com/security/cve/CVE-2021-41223", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41223", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41223", }, { cve: "CVE-2021-41224", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41224", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SparseFillEmptyRows` can be made to trigger a heap OOB access. This occurs whenever the size of `indices` does not match the size of `values`. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41224", url: "https://www.suse.com/security/cve/CVE-2021-41224", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41224", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41224", }, { cve: "CVE-2021-41225", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41225", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's Grappler optimizer has a use of unitialized variable. If the `train_nodes` vector (obtained from the saved model that gets optimized) does not contain a `Dequeue` node, then `dequeue_node` is left unitialized. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41225", url: "https://www.suse.com/security/cve/CVE-2021-41225", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41225", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41225", }, { cve: "CVE-2021-41226", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41226", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the implementation of `SparseBinCount` is vulnerable to a heap OOB access. This is because of missing validation between the elements of the `values` argument and the shape of the sparse output. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41226", url: "https://www.suse.com/security/cve/CVE-2021-41226", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41226", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41226", }, { cve: "CVE-2021-41227", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41227", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions the `ImmutableConst` operation in TensorFlow can be tricked into reading arbitrary memory contents. This is because the `tstring` TensorFlow string class has a special case for memory mapped strings but the operation itself does not offer any support for this datatype. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41227", url: "https://www.suse.com/security/cve/CVE-2021-41227", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41227", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.6, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41227", }, { cve: "CVE-2021-41228", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41228", }, ], notes: [ { category: "general", text: "TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's `saved_model_cli` tool is vulnerable to a code injection as it calls `eval` on user supplied strings. This can be used by attackers to run arbitrary code on the plaform where the CLI tool runs. However, given that the tool is always run manually, the impact of this is not severe. We have patched this by adding a `safe` flag which defaults to `True` and an explicit warning for users. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, TensorFlow 2.5.2, and TensorFlow 2.4.4, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41228", url: "https://www.suse.com/security/cve/CVE-2021-41228", }, { category: "external", summary: "SUSE Bug 1192447 for CVE-2021-41228", url: "https://bugzilla.suse.com/1192447", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-41228", }, { cve: "CVE-2022-21725", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21725", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The estimator for the cost of some convolution operations can be made to execute a division by 0. The function fails to check that the stride argument is strictly positive. Hence, the fix is to add a check for the stride argument to ensure it is valid. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21725", url: "https://www.suse.com/security/cve/CVE-2022-21725", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21725", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21725", }, { cve: "CVE-2022-21726", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21726", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `Dequantize` does not fully validate the value of `axis` and can result in heap OOB accesses. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked and this results in reading past the end of the array containing the dimensions of the input tensor. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21726", url: "https://www.suse.com/security/cve/CVE-2022-21726", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21726", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21726", }, { cve: "CVE-2022-21727", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21727", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `Dequantize` is vulnerable to an integer overflow weakness. The `axis` argument can be `-1` (the default value for the optional argument) or any other positive value at most the number of dimensions of the input. Unfortunately, the upper bound is not checked, and, since the code computes `axis + 1`, an attacker can trigger an integer overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21727", url: "https://www.suse.com/security/cve/CVE-2022-21727", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21727", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21727", }, { cve: "CVE-2022-21728", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21728", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ReverseSequence` does not fully validate the value of `batch_dim` and can result in a heap OOB read. There is a check to make sure the value of `batch_dim` does not go over the rank of the input, but there is no check for negative values. Negative dimensions are allowed in some cases to mimic Python's negative indexing (i.e., indexing from the end of the array), however if the value is too negative then the implementation of `Dim` would access elements before the start of an array. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21728", url: "https://www.suse.com/security/cve/CVE-2022-21728", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21728", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21728", }, { cve: "CVE-2022-21729", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21729", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `UnravelIndex` is vulnerable to a division by zero caused by an integer overflow bug. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21729", url: "https://www.suse.com/security/cve/CVE-2022-21729", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21729", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21729", }, { cve: "CVE-2022-21730", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21730", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalAvgPoolGrad` does not consider cases where the input tensors are invalid allowing an attacker to read from outside of bounds of heap. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21730", url: "https://www.suse.com/security/cve/CVE-2022-21730", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21730", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21730", }, { cve: "CVE-2022-21731", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21731", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `ConcatV2` can be used to trigger a denial of service attack via a segfault caused by a type confusion. The `axis` argument is translated into `concat_dim` in the `ConcatShapeHelper` helper function. Then, a value for `min_rank` is computed based on `concat_dim`. This is then used to validate that the `values` tensor has at least the required rank. However, `WithRankAtLeast` receives the lower bound as a 64-bits value and then compares it against the maximum 32-bits integer value that could be represented. Due to the fact that `min_rank` is a 32-bits value and the value of `axis`, the `rank` argument is a negative value, so the error check is bypassed. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21731", url: "https://www.suse.com/security/cve/CVE-2022-21731", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21731", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21731", }, { cve: "CVE-2022-21732", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21732", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `ThreadPoolHandle` can be used to trigger a denial of service attack by allocating too much memory. This is because the `num_threads` argument is only checked to not be negative, but there is no upper bound on its value. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21732", url: "https://www.suse.com/security/cve/CVE-2022-21732", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21732", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21732", }, { cve: "CVE-2022-21733", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21733", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `StringNGrams` can be used to trigger a denial of service attack by causing an out of memory condition after an integer overflow. We are missing a validation on `pad_witdh` and that result in computing a negative value for `ngram_width` which is later used to allocate parts of the output. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21733", url: "https://www.suse.com/security/cve/CVE-2022-21733", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21733", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21733", }, { cve: "CVE-2022-21734", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21734", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `MapStage` is vulnerable a `CHECK`-fail if the key tensor is not a scalar. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21734", url: "https://www.suse.com/security/cve/CVE-2022-21734", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21734", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21734", }, { cve: "CVE-2022-21735", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21735", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `FractionalMaxPool` can be made to crash a TensorFlow process via a division by 0. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21735", url: "https://www.suse.com/security/cve/CVE-2022-21735", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21735", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21735", }, { cve: "CVE-2022-21736", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21736", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseTensorSliceDataset` has an undefined behavior: under certain condition it can be made to dereference a `nullptr` value. The 3 input arguments to `SparseTensorSliceDataset` represent a sparse tensor. However, there are some preconditions that these arguments must satisfy but these are not validated in the implementation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21736", url: "https://www.suse.com/security/cve/CVE-2022-21736", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21736", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21736", }, { cve: "CVE-2022-21737", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21737", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `*Bincount` operations allows malicious users to cause denial of service by passing in arguments which would trigger a `CHECK`-fail. There are several conditions that the input arguments must satisfy. Some are not caught during shape inference and others are not caught during kernel implementation. This results in `CHECK` failures later when the output tensors get allocated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21737", url: "https://www.suse.com/security/cve/CVE-2022-21737", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21737", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21737", }, { cve: "CVE-2022-21738", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21738", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` can be made to crash a TensorFlow process by an integer overflow whose result is then used in a memory allocation. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21738", url: "https://www.suse.com/security/cve/CVE-2022-21738", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21738", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21738", }, { cve: "CVE-2022-21739", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21739", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `QuantizedMaxPool` has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21739", url: "https://www.suse.com/security/cve/CVE-2022-21739", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21739", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21739", }, { cve: "CVE-2022-21740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21740", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `SparseCountSparseOutput` is vulnerable to a heap overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21740", url: "https://www.suse.com/security/cve/CVE-2022-21740", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21740", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21740", }, { cve: "CVE-2022-21741", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-21741", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. ### Impact An attacker can craft a TFLite model that would trigger a division by zero in the implementation of depthwise convolutions. The parameters of the convolution can be user controlled and are also used within a division operation to determine the size of the padding that needs to be added before applying the convolution. There is no check before this division that the divisor is strictly positive. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-21741", url: "https://www.suse.com/security/cve/CVE-2022-21741", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-21741", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-21741", }, { cve: "CVE-2022-23557", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23557", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in `BiasAndClamp` implementation. There is no check that the `bias_size` is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23557", url: "https://www.suse.com/security/cve/CVE-2022-23557", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23557", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23557", }, { cve: "CVE-2022-23558", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23558", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in `TfLiteIntArrayCreate`. The `TfLiteIntArrayGetSizeInBytes` returns an `int` instead of a `size_t. An attacker can control model inputs such that `computed_size` overflows the size of `int` datatype. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23558", url: "https://www.suse.com/security/cve/CVE-2022-23558", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23558", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23558", }, { cve: "CVE-2022-23559", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23559", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations. Both `embedding_size` and `lookup_size` are products of values provided by the user. Hence, a malicious user could trigger overflows in the multiplication. In certain scenarios, this can then result in heap OOB read/write. Users are advised to upgrade to a patched version.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23559", url: "https://www.suse.com/security/cve/CVE-2022-23559", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23559", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23559", }, { cve: "CVE-2022-23560", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23560", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would allow limited reads and writes outside of arrays in TFLite. This exploits missing validation in the conversion from sparse tensors to dense tensors. The fix is included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range. Users are advised to upgrade as soon as possible.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23560", url: "https://www.suse.com/security/cve/CVE-2022-23560", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23560", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23560", }, { cve: "CVE-2022-23561", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23561", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause a write outside of bounds of an array in TFLite. In fact, the attacker can override the linked list used by the memory allocator. This can be leveraged for an arbitrary write primitive under certain conditions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23561", url: "https://www.suse.com/security/cve/CVE-2022-23561", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23561", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23561", }, { cve: "CVE-2022-23562", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23562", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `Range` suffers from integer overflows. These can trigger undefined behavior or, in some scenarios, extremely large allocations. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23562", url: "https://www.suse.com/security/cve/CVE-2022-23562", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23562", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23562", }, { cve: "CVE-2022-23563", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23563", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. In multiple places, TensorFlow uses `tempfile.mktemp` to create temporary files. While this is acceptable in testing, in utilities and libraries it is dangerous as a different process can create the file between the check for the filename in `mktemp` and the actual creation of the file by a subsequent operation (a TOC/TOU type of weakness). In several instances, TensorFlow was supposed to actually create a temporary directory instead of a file. This logic bug is hidden away by the `mktemp` function usage. We have patched the issue in several commits, replacing `mktemp` with the safer `mkstemp`/`mkdtemp` functions, according to the usage pattern. Users are advised to upgrade as soon as possible.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23563", url: "https://www.suse.com/security/cve/CVE-2022-23563", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23563", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23563", }, { cve: "CVE-2022-23564", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23564", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. When decoding a resource handle tensor from protobuf, a TensorFlow process can encounter cases where a `CHECK` assertion is invalidated based on user controlled arguments. This allows attackers to cause denial of services in TensorFlow processes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23564", url: "https://www.suse.com/security/cve/CVE-2022-23564", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23564", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23564", }, { cve: "CVE-2022-23565", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23565", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. An attacker can trigger denial of service via assertion failure by altering a `SavedModel` on disk such that `AttrDef`s of some operation are duplicated. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23565", url: "https://www.suse.com/security/cve/CVE-2022-23565", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23565", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23565", }, { cve: "CVE-2022-23566", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23566", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. TensorFlow is vulnerable to a heap OOB write in `Grappler`. The `set_output` function writes to an array at the specified index. Hence, this gives a malicious user a write primitive. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23566", url: "https://www.suse.com/security/cve/CVE-2022-23566", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23566", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23566", }, { cve: "CVE-2022-23567", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23567", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementations of `Sparse*Cwise*` ops are vulnerable to integer overflows. These can be used to trigger large allocations (so, OOM based denial of service) or `CHECK`-fails when building new `TensorShape` objects (so, assert failures based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23567", url: "https://www.suse.com/security/cve/CVE-2022-23567", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23567", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23567", }, { cve: "CVE-2022-23568", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23568", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `AddManySparseToTensorsMap` is vulnerable to an integer overflow which results in a `CHECK`-fail when building new `TensorShape` objects (so, an assert failure based denial of service). We are missing some validation on the shapes of the input tensors as well as directly constructing a large `TensorShape` with user-provided dimensions. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23568", url: "https://www.suse.com/security/cve/CVE-2022-23568", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23568", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23568", }, { cve: "CVE-2022-23569", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23569", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. Multiple operations in TensorFlow can be used to trigger a denial of service via `CHECK`-fails (i.e., assertion failures). This is similar to TFSA-2021-198 and has similar fixes. We have patched the reported issues in multiple GitHub commits. It is possible that other similar instances exist in TensorFlow, we will issue fixes as these are discovered. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23569", url: "https://www.suse.com/security/cve/CVE-2022-23569", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23569", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23569", }, { cve: "CVE-2022-23570", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23570", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. When decoding a tensor from protobuf, TensorFlow might do a null-dereference if attributes of some mutable arguments to some operations are missing from the proto. This is guarded by a `DCHECK`. However, `DCHECK` is a no-op in production builds and an assertion failure in debug builds. In the first case execution proceeds to the dereferencing of the null pointer, whereas in the second case it results in a crash due to the assertion failure. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23570", url: "https://www.suse.com/security/cve/CVE-2022-23570", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23570", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23570", }, { cve: "CVE-2022-23571", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23571", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. When decoding a tensor from protobuf, a TensorFlow process can encounter cases where a `CHECK` assertion is invalidated based on user controlled arguments, if the tensors have an invalid `dtype` and 0 elements or an invalid shape. This allows attackers to cause denial of services in TensorFlow processes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23571", url: "https://www.suse.com/security/cve/CVE-2022-23571", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23571", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23571", }, { cve: "CVE-2022-23572", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23572", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, TensorFlow can fail to specialize a type during shape inference. This case is covered by the `DCHECK` function however, `DCHECK` is a no-op in production builds and an assertion failure in debug builds. In the first case execution proceeds to the `ValueOrDie` line. This results in an assertion failure as `ret` contains an error `Status`, not a value. In the second case we also get a crash due to the assertion failure. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23572", url: "https://www.suse.com/security/cve/CVE-2022-23572", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23572", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23572", }, { cve: "CVE-2022-23573", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23573", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `AssignOp` can result in copying uninitialized data to a new tensor. This later results in undefined behavior. The implementation has a check that the left hand side of the assignment is initialized (to minimize number of allocations), but does not check that the right hand side is also initialized. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23573", url: "https://www.suse.com/security/cve/CVE-2022-23573", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23573", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23573", }, { cve: "CVE-2022-23574", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23574", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. There is a typo in TensorFlow's `SpecializeType` which results in heap OOB read/write. Due to a typo, `arg` is initialized to the `i`th mutable argument in a loop where the loop index is `j`. Hence it is possible to assign to `arg` from outside the vector of arguments. Since this is a mutable proto value, it allows both read and write to outside of bounds data. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, and TensorFlow 2.6.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23574", url: "https://www.suse.com/security/cve/CVE-2022-23574", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23574", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23574", }, { cve: "CVE-2022-23575", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23575", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `OpLevelCostEstimator::CalculateTensorSize` is vulnerable to an integer overflow if an attacker can create an operation which would involve a tensor with large enough number of elements. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23575", url: "https://www.suse.com/security/cve/CVE-2022-23575", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23575", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23575", }, { cve: "CVE-2022-23576", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23576", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `OpLevelCostEstimator::CalculateOutputSize` is vulnerable to an integer overflow if an attacker can create an operation which would involve tensors with large enough number of elements. We can have a large enough number of dimensions in `output_shape.dim()` or just a small number of dimensions being large enough to cause an overflow in the multiplication. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23576", url: "https://www.suse.com/security/cve/CVE-2022-23576", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23576", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23576", }, { cve: "CVE-2022-23577", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23577", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The implementation of `GetInitOp` is vulnerable to a crash caused by dereferencing a null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23577", url: "https://www.suse.com/security/cve/CVE-2022-23577", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23577", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23577", }, { cve: "CVE-2022-23578", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23578", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. If a graph node is invalid, TensorFlow can leak memory in the implementation of `ImmutableExecutorState::Initialize`. Here, we set `item->kernel` to `nullptr` but it is a simple `OpKernel*` pointer so the memory that was previously allocated to it would leak. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23578", url: "https://www.suse.com/security/cve/CVE-2022-23578", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23578", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23578", }, { cve: "CVE-2022-23579", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23579", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a `SavedModel` such that `SafeToRemoveIdentity` would trigger `CHECK` failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23579", url: "https://www.suse.com/security/cve/CVE-2022-23579", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23579", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23579", }, { cve: "CVE-2022-23580", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23580", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. During shape inference, TensorFlow can allocate a large vector based on a value from a tensor controlled by the user. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23580", url: "https://www.suse.com/security/cve/CVE-2022-23580", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23580", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23580", }, { cve: "CVE-2022-23581", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23581", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a `SavedModel` such that `IsSimplifiableReshape` would trigger `CHECK` failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23581", url: "https://www.suse.com/security/cve/CVE-2022-23581", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23581", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23581", }, { cve: "CVE-2022-23582", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23582", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that `TensorByteSize` would trigger `CHECK` failures. `TensorShape` constructor throws a `CHECK`-fail if shape is partial or has a number of elements that would overflow the size of an `int`. The `PartialTensorShape` constructor instead does not cause a `CHECK`-abort if the shape is partial, which is exactly what this function needs to be able to return `-1`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23582", url: "https://www.suse.com/security/cve/CVE-2022-23582", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23582", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23582", }, { cve: "CVE-2022-23583", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23583", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that any binary op would trigger `CHECK` failures. This occurs when the protobuf part corresponding to the tensor arguments is modified such that the `dtype` no longer matches the `dtype` expected by the op. In that case, calling the templated binary operator for the binary op would receive corrupted data, due to the type confusion involved. If `Tin` and `Tout` don't match the type of data in `out` and `input_*` tensors then `flat<*>` would interpret it wrongly. In most cases, this would be a silent failure, but we have noticed scenarios where this results in a `CHECK` crash, hence a denial of service. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23583", url: "https://www.suse.com/security/cve/CVE-2022-23583", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23583", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23583", }, { cve: "CVE-2022-23584", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23584", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a use after free behavior when decoding PNG images. After `png::CommonFreeDecode(&decode)` gets called, the values of `decode.width` and `decode.height` are in an unspecified state. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23584", url: "https://www.suse.com/security/cve/CVE-2022-23584", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23584", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23584", }, { cve: "CVE-2022-23585", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23585", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. When decoding PNG images TensorFlow can produce a memory leak if the image is invalid. After calling `png::CommonInitDecode(..., &decode)`, the `decode` value contains allocated buffers which can only be freed by calling `png::CommonFreeDecode(&decode)`. However, several error case in the function implementation invoke the `OP_REQUIRES` macro which immediately terminates the execution of the function, without allowing for the memory free to occur. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23585", url: "https://www.suse.com/security/cve/CVE-2022-23585", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23585", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23585", }, { cve: "CVE-2022-23586", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23586", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that assertions in `function.cc` would be falsified and crash the Python interpreter. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23586", url: "https://www.suse.com/security/cve/CVE-2022-23586", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23586", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23586", }, { cve: "CVE-2022-23587", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23587", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, Grappler component of TensorFlow is vulnerable to an integer overflow during cost estimation for crop and resize. Since the cropping parameters are user controlled, a malicious person can trigger undefined behavior. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23587", url: "https://www.suse.com/security/cve/CVE-2022-23587", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23587", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23587", }, { cve: "CVE-2022-23588", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23588", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a denial of service by altering a `SavedModel` such that Grappler optimizer would attempt to build a tensor using a reference `dtype`. This would result in a crash due to a `CHECK`-fail in the `Tensor` constructor as reference types are not allowed. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23588", url: "https://www.suse.com/security/cve/CVE-2022-23588", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23588", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23588", }, { cve: "CVE-2022-23589", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23589", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, Grappler component of TensorFlow can trigger a null pointer dereference. There are 2 places where this can occur, for the same malicious alteration of a `SavedModel` file (fixing the first one would trigger the same dereference in the second place). First, during constant folding, the `GraphDef` might not have the required nodes for the binary operation. If a node is missing, the correposning `mul_*child` would be null, and the dereference in the subsequent line would be incorrect. We have a similar issue during `IsIdentityConsumingSwitch`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23589", url: "https://www.suse.com/security/cve/CVE-2022-23589", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23589", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23589", }, { cve: "CVE-2022-23590", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23590", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. A `GraphDef` from a TensorFlow `SavedModel` can be maliciously altered to cause a TensorFlow process to crash due to encountering a `StatusOr` value that is an error and forcibly extracting the value from it. We have patched the issue in multiple GitHub commits and these will be included in TensorFlow 2.8.0 and TensorFlow 2.7.1, as both are affected.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23590", url: "https://www.suse.com/security/cve/CVE-2022-23590", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23590", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23590", }, { cve: "CVE-2022-23591", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23591", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The `GraphDef` format in TensorFlow does not allow self recursive functions. The runtime assumes that this invariant is satisfied. However, a `GraphDef` containing a fragment such as the following can be consumed when loading a `SavedModel`. This would result in a stack overflow during execution as resolving each `NodeDef` means resolving the function itself and its nodes. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23591", url: "https://www.suse.com/security/cve/CVE-2022-23591", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23591", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23591", }, { cve: "CVE-2022-23594", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23594", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. The TFG dialect of TensorFlow (MLIR) makes several assumptions about the incoming `GraphDef` before converting it to the MLIR-based dialect. If an attacker changes the `SavedModel` format on disk to invalidate these assumptions and the `GraphDef` is then converted to MLIR-based IR then they can cause a crash in the Python interpreter. Under certain scenarios, heap OOB read/writes are possible. These issues have been discovered via fuzzing and it is possible that more weaknesses exist. We will patch them as they are discovered.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23594", url: "https://www.suse.com/security/cve/CVE-2022-23594", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23594", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23594", }, { cve: "CVE-2022-23595", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23595", }, ], notes: [ { category: "general", text: "Tensorflow is an Open Source Machine Learning Framework. When building an XLA compilation cache, if default settings are used, TensorFlow triggers a null pointer dereference. In the default scenario, all devices are allowed, so `flr->config_proto` is `nullptr`. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23595", url: "https://www.suse.com/security/cve/CVE-2022-23595", }, { category: "external", summary: "SUSE Bug 1195545 for CVE-2022-23595", url: "https://bugzilla.suse.com/1195545", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-2.9.1-1.1.x86_64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.aarch64", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.ppc64le", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.s390x", "openSUSE Tumbleweed:tensorflow-lite-devel-2.9.1-1.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2022-23595", }, ], }
ghsa-cvgx-3v3q-m36c
Vulnerability from github
Published
2021-11-10 19:01
Modified
2024-11-07 22:18
Severity ?
Summary
Heap OOB in shape inference for `QuantizeV2`
Details
Impact
The shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array:
```python import tensorflow as tf
@tf.function def test(): data=tf.raw_ops.QuantizeV2( input=[1.0,1.0], min_range=[1.0,10.0], max_range=[1.0,10.0], T=tf.qint32, mode='MIN_COMBINED', round_mode='HALF_TO_EVEN', narrow_range=False, axis=-100, ensure_minimum_range=10) return data
test() ```
This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start of a heap buffer:
cc
int axis = -1;
Status s = c->GetAttr("axis", &axis);
if (!s.ok() && s.code() != error::NOT_FOUND) {
return s;
}
...
if (axis != -1) {
...
TF_RETURN_IF_ERROR(
c->Merge(c->Dim(minmax, 0), c->Dim(input, axis), &depth));
}
The code allows axis to be an optional argument (s would contain an error::NOT_FOUND error code). Otherwise, it assumes that axis is a valid index into the dimensions of the input tensor. If axis is less than -1 then this results in a heap OOB read.
Patches
We have patched the issue in GitHub commit a0d64445116c43cf46a5666bd4eee28e7a82f244.
The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
For more information
Please consult our security guide for more information regarding the security model and how to contact us with issues and questions.
Attribution
This vulnerability has been reported by members of the Aivul Team from Qihoo 360.
{ affected: [ { package: { ecosystem: "PyPI", name: "tensorflow", }, ranges: [ { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", ], }, { package: { ecosystem: "PyPI", name: "tensorflow-cpu", }, ranges: [ { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", ], }, { package: { ecosystem: "PyPI", name: "tensorflow-gpu", }, ranges: [ { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", ], }, ], aliases: [ "CVE-2021-41211", ], database_specific: { cwe_ids: [ "CWE-125", ], github_reviewed: true, github_reviewed_at: "2021-11-08T22:32:45Z", nvd_published_at: "2021-11-05T21:15:00Z", severity: "HIGH", }, details: "### Impact\nThe [shape inference code for `QuantizeV2`](https://github.com/tensorflow/tensorflow/blob/8d72537c6abf5a44103b57b9c2e22c14f5f49698/tensorflow/core/framework/common_shape_fns.cc#L2509-L2530) can trigger a read outside of bounds of heap allocated array:\n\n```python\nimport tensorflow as tf\n\n@tf.function\ndef test():\n data=tf.raw_ops.QuantizeV2(\n input=[1.0,1.0],\n min_range=[1.0,10.0],\n max_range=[1.0,10.0],\n T=tf.qint32,\n mode='MIN_COMBINED',\n round_mode='HALF_TO_EVEN',\n narrow_range=False,\n axis=-100,\n ensure_minimum_range=10)\n return data\n\ntest()\n```\n\nThis occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer:\n \n```cc\nint axis = -1;\nStatus s = c->GetAttr(\"axis\", &axis);\nif (!s.ok() && s.code() != error::NOT_FOUND) {\n return s;\n} \n... \nif (axis != -1) {\n ...\n TF_RETURN_IF_ERROR(\n c->Merge(c->Dim(minmax, 0), c->Dim(input, axis), &depth));\n}\n```\n\nThe code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read.\n \n### Patches\nWe have patched the issue in GitHub commit [a0d64445116c43cf46a5666bd4eee28e7a82f244](https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244).\n \nThe fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.\n \n### For more information\nPlease consult [our security guide](https://github.com/tensorflow/tensorflow/blob/master/SECURITY.md) for more information regarding the security model and how to contact us with issues and questions.\n\n### Attribution\nThis vulnerability has been reported by members of the Aivul Team from Qihoo 360.", id: "GHSA-cvgx-3v3q-m36c", modified: "2024-11-07T22:18:59Z", published: "2021-11-10T19:01:03Z", references: [ { type: "WEB", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-41211", }, { type: "WEB", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-620.yaml", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-818.yaml", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-403.yaml", }, { type: "PACKAGE", url: "https://github.com/tensorflow/tensorflow", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", type: "CVSS_V3", }, ], summary: "Heap OOB in shape inference for `QuantizeV2`", }
fkie_cve-2021-41211
Vulnerability from fkie_nvd
Published
2021-11-05 21:15
Modified
2024-11-21 06:25
Severity ?
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| security-advisories@github.com | https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244 | Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c | Exploit, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| tensorflow | 2.6.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:google:tensorflow:2.6.0:*:*:*:*:*:*:*", matchCriteriaId: "651EA851-E660-4E53-9F3E-B6B69D91326B", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", }, { lang: "es", value: "TensorFlow es una plataforma de código abierto para el aprendizaje automático. En las versiones afectadas, el código de inferencia de forma para \"QuantizeV2\" puede desencadenar una lectura fuera de límites de la matriz asignada a la pila. Esto ocurre siempre que el \"eje\" es un valor negativo menor que \"1\". En este caso, estamos accediendo a los datos antes del inicio de un buffer de heap. El código permite que \"axis\" sea un argumento opcional (\"s\" contendría un código de error \"error::NOT_FOUND\"). En caso contrario, asume que \"axis\" es un índice válido en las dimensiones del tensor \"input\". Si \"axis\" es menor que \"-1\", se produce una lectura OOB de la pila. La corrección será incluida en TensorFlow versión 2.7.0. También vamos a incluir este commit en TensorFlow versión 2.6.1, ya que esta versión es la única que también está afectada", }, ], id: "CVE-2021-41211", lastModified: "2024-11-21T06:25:47.220", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 3.6, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:P", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.2, source: "security-advisories@github.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.2, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-11-05T21:15:08.813", references: [ { source: "security-advisories@github.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, { source: "security-advisories@github.com", tags: [ "Exploit", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, ], sourceIdentifier: "security-advisories@github.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-125", }, ], source: "security-advisories@github.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-125", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
pysec-2021-818
Vulnerability from pysec
Published
2021-11-05 21:15
Modified
2021-12-09 06:35
Details
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start of a heap buffer. The code allows axis to be an optional argument (s would contain an error::NOT_FOUND error code). Otherwise, it assumes that axis is a valid index into the dimensions of the input tensor. If axis is less than -1 then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
Impacted products
| Name | purl |
|---|---|
| tensorflow-gpu | pkg:pypi/tensorflow-gpu |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "tensorflow-gpu", purl: "pkg:pypi/tensorflow-gpu", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], repo: "https://github.com/tensorflow/tensorflow", type: "GIT", }, { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, { introduced: "2.7.0rc0", }, { fixed: "2.7.0", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", "2.7.0rc0", "2.7.0rc1", ], }, ], aliases: [ "CVE-2021-41211", "GHSA-cvgx-3v3q-m36c", ], details: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", id: "PYSEC-2021-818", modified: "2021-12-09T06:35:42.767652Z", published: "2021-11-05T21:15:00Z", references: [ { type: "ADVISORY", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { type: "FIX", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }
pysec-2021-620
Vulnerability from pysec
Published
2021-11-05 21:15
Modified
2021-12-09 06:35
Details
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start of a heap buffer. The code allows axis to be an optional argument (s would contain an error::NOT_FOUND error code). Otherwise, it assumes that axis is a valid index into the dimensions of the input tensor. If axis is less than -1 then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
Impacted products
| Name | purl |
|---|---|
| tensorflow-cpu | pkg:pypi/tensorflow-cpu |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "tensorflow-cpu", purl: "pkg:pypi/tensorflow-cpu", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], repo: "https://github.com/tensorflow/tensorflow", type: "GIT", }, { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, { introduced: "2.7.0rc0", }, { fixed: "2.7.0", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", "2.7.0rc0", "2.7.0rc1", ], }, ], aliases: [ "CVE-2021-41211", "GHSA-cvgx-3v3q-m36c", ], details: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", id: "PYSEC-2021-620", modified: "2021-12-09T06:35:09.057312Z", published: "2021-11-05T21:15:00Z", references: [ { type: "ADVISORY", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { type: "FIX", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }
pysec-2021-403
Vulnerability from pysec
Published
2021-11-05 21:15
Modified
2021-11-13 06:52
Details
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start of a heap buffer. The code allows axis to be an optional argument (s would contain an error::NOT_FOUND error code). Otherwise, it assumes that axis is a valid index into the dimensions of the input tensor. If axis is less than -1 then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
Impacted products
| Name | purl |
|---|---|
| tensorflow | pkg:pypi/tensorflow |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "tensorflow", purl: "pkg:pypi/tensorflow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], repo: "https://github.com/tensorflow/tensorflow", type: "GIT", }, { events: [ { introduced: "2.6.0", }, { fixed: "2.6.1", }, { introduced: "2.7.0rc0", }, { fixed: "2.7.0", }, ], type: "ECOSYSTEM", }, ], versions: [ "2.6.0", "2.7.0rc0", "2.7.0rc1", ], }, ], aliases: [ "CVE-2021-41211", "GHSA-cvgx-3v3q-m36c", ], details: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", id: "PYSEC-2021-403", modified: "2021-11-13T06:52:43.843277Z", published: "2021-11-05T21:15:00Z", references: [ { type: "ADVISORY", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { type: "FIX", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }
gsd-2021-41211
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.
Aliases
Aliases
{ GSD: { alias: "CVE-2021-41211", description: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", id: "GSD-2021-41211", references: [ "https://www.suse.com/security/cve/CVE-2021-41211.html", "https://security.archlinux.org/CVE-2021-41211", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2021-41211", ], details: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", id: "GSD-2021-41211", modified: "2023-12-13T01:23:27.368544Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2021-41211", STATE: "PUBLIC", TITLE: "Heap OOB read in shape inference for `QuantizeV2`", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "tensorflow", version: { version_data: [ { version_value: ">= 2.6.0, < 2.6.1", }, ], }, }, ], }, vendor_name: "tensorflow", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", }, ], }, impact: { cvss: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-125: Out-of-bounds Read", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", refsource: "CONFIRM", url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { name: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", refsource: "MISC", url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }, source: { advisory: "GHSA-cvgx-3v3q-m36c", discovery: "UNKNOWN", }, }, "gitlab.com": { advisories: [ { affected_range: "==2.6.0", affected_versions: "Version 2.6.0", cvss_v2: "AV:L/AC:L/Au:N/C:P/I:N/A:P", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-125", "CWE-937", ], date: "2021-11-10", description: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", fixed_versions: [ "2.6.1", ], identifier: "CVE-2021-41211", identifiers: [ "GHSA-cvgx-3v3q-m36c", "CVE-2021-41211", ], not_impacted: "All versions before 2.6.0, all versions after 2.6.0", package_slug: "pypi/tensorflow-cpu", pubdate: "2021-11-10", solution: "Upgrade to version 2.6.1 or above.", title: "Out-of-bounds Read", urls: [ "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", "https://nvd.nist.gov/vuln/detail/CVE-2021-41211", "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", "https://github.com/advisories/GHSA-cvgx-3v3q-m36c", ], uuid: "4ce60500-e36d-4ee4-844a-e25c68eccf34", }, { affected_range: "==2.6.0", affected_versions: "Version 2.6.0", cvss_v2: "AV:L/AC:L/Au:N/C:P/I:N/A:P", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-125", "CWE-937", ], date: "2021-11-10", description: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", fixed_versions: [ "2.6.1", ], identifier: "CVE-2021-41211", identifiers: [ "GHSA-cvgx-3v3q-m36c", "CVE-2021-41211", ], not_impacted: "All versions before 2.6.0, all versions after 2.6.0", package_slug: "pypi/tensorflow-gpu", pubdate: "2021-11-10", solution: "Upgrade to version 2.6.1 or above.", title: "Out-of-bounds Read", urls: [ "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", "https://nvd.nist.gov/vuln/detail/CVE-2021-41211", "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", "https://github.com/advisories/GHSA-cvgx-3v3q-m36c", ], uuid: "093093e4-d90c-447e-b6e5-1f14413723c0", }, { affected_range: "==2.6.0", affected_versions: "Version 2.6.0", cvss_v2: "AV:L/AC:L/Au:N/C:P/I:N/A:P", cvss_v3: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-125", "CWE-937", ], date: "2021-11-09", description: "TensorFlow is an open source platform for machine learning.This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read.", fixed_versions: [ "2.6.1", ], identifier: "CVE-2021-41211", identifiers: [ "CVE-2021-41211", "GHSA-cvgx-3v3q-m36c", ], not_impacted: "All versions before 2.6.0, all versions after 2.6.0", package_slug: "pypi/tensorflow", pubdate: "2021-11-05", solution: "Upgrade to version 2.6.1 or above.", title: "Out-of-bounds Read", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2021-41211", "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", ], uuid: "edc8aa66-c9c2-4b90-92b5-1a308adbabdb", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:google:tensorflow:2.6.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2021-41211", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for `QuantizeV2` can trigger a read outside of bounds of heap allocated array. This occurs whenever `axis` is a negative value less than `-1`. In this case, we are accessing data before the start of a heap buffer. The code allows `axis` to be an optional argument (`s` would contain an `error::NOT_FOUND` error code). Otherwise, it assumes that `axis` is a valid index into the dimensions of the `input` tensor. If `axis` is less than `-1` then this results in a heap OOB read. The fix will be included in TensorFlow 2.7.0. We will also cherrypick this commit on TensorFlow 2.6.1, as this version is the only one that is also affected.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-125", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", refsource: "CONFIRM", tags: [ "Exploit", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-cvgx-3v3q-m36c", }, { name: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", refsource: "MISC", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/tensorflow/tensorflow/commit/a0d64445116c43cf46a5666bd4eee28e7a82f244", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 3.6, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:P", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.2, }, }, lastModifiedDate: "2021-11-09T15:14Z", publishedDate: "2021-11-05T21:15Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.