CVE-2022-23581

Description

Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a `SavedModel` such that `IsSimplifiableReshape` would trigger `CHECK` failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.

How to fix CVE-2022-23581

To remediate CVE-2022-23581, upgrade the affected package to a fixed version below.

• —upgrade to 2.5.3 or later
• —upgrade to 2.5.3 or later
• —upgrade to 2.5.3 or later
• —upgrade to 1fb27733f943295d874417630edd3b38b34ce082 or later
• —upgrade to 2.5.3 or later
• —upgrade to 1fb27733f943295d874417630edd3b38b34ce082 or later

Is CVE-2022-23581 being exploited?

Low — EPSS is 0.5%, meaning exploitation activity has not been observed at scale.

Affected packages (6)

• from 0, < 2.5.3, >= 2.6.0, < 2.6.3, >= 2.7.0, < 2.7.1
• from 0, < 2.5.3
• from 0, < 2.5.3
• from 0, < 1fb27733f943295d874417630edd3b38b34ce082, < 240655511cd3e701155f944a972db71b6c0b1bb6, < ebc1a2ffe5a7573d905e99bd0ee3568ee07c12c1 | from 0, < 2.5.3, >= 2.6.0, < 2.6.3
• from 0, < 2.5.3
• from 0, < 1fb27733f943295d874417630edd3b38b34ce082, < 240655511cd3e701155f944a972db71b6c0b1bb6, < ebc1a2ffe5a7573d905e99bd0ee3568ee07c12c1 | from 0, < 2.5.3, >= 2.6.0, < 2.6.3

CVSS scores

References (9)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2022-23581
• WEBgithub.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2022-90.yaml
• WEBgithub.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2022-145.yaml
• WEBgithub.com/tensorflow/tensorflow