Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-9x52-887g-fhc2

GitHub Security Advisory

Out of bounds read in Tensorflow

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

### Impact
The [TFG dialect of TensorFlow (MLIR)](https://github.com/tensorflow/tensorflow/tree/274df9b02330b790aa8de1cee164b70f72b9b244/tensorflow/core/ir/importexport) makes several assumptions about the incoming `GraphDef` before converting it to the MLIR-based dialect.

If an attacker changes the `SavedModel` format on disk to invalidate these assumptions and the `GraphDef` is then converted to MLIR-based IR then they can cause a crash in the Python interpreter. Under certain scenarios, heap OOB read/writes are possible.

These issues have been discovered via fuzzing and it is possible that more weaknesses exist. We will patch them as they are discovered.

### Patches
We have patched the issue in multiple GitHub commits and these will be included in TensorFlow 2.8.0 and TensorFlow 2.7.1, as both are affected.

### For more information
Please consult [our security guide](https://github.com/tensorflow/tensorflow/blob/master/SECURITY.md) for more information regarding the security model and how to contact us with issues and questions.

Affected Packages

PyPI tensorflow
Affected versions: 2.7.0 (fixed in 2.7.1)
PyPI tensorflow-cpu
Affected versions: 2.7.0 (fixed in 2.7.1)
PyPI tensorflow-gpu
Affected versions: 2.7.0 (fixed in 2.7.1)

Related CVEs

CVE-2022-23594

Key Information

GHSA ID
GHSA-9x52-887g-fhc2
Published
February 9, 2022 11:32 PM
Last Modified
February 11, 2022 7:56 PM
CVSS Score
7.5 /10
Primary Ecosystem
PyPI
Primary Package
tensorflow
GitHub Reviewed
✓ Yes

Dataset

Last updated: September 12, 2025 6:34 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.