CVE-2022-23559
Integer overflow in TFLite
In short
A specially crafted machine learning model can cause an integer overflow in TensorFlow Lite's embedding lookup operations, potentially leading to unauthorized memory access. This vulnerability allows attackers to read or write data outside the intended heap memory boundaries.
Technical detail
Integer overflow in embedding_size and lookup_size calculations within TFLite's embedding lookup operations results from insufficient input validation on user-supplied parameters. Exploitation requires crafting a malicious TFLite model; successful overflow can lead to heap out-of-bounds read/write, enabling information disclosure or code execution depending on memory layout and application context.
Summary generated and translated by AI from the official description.
Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would cause an integer overflow in embedding lookup operations. Both `embedding_size` and `lookup_size` are products of values provided by the user. Hence, a malicious user could trigger overflows in the multiplication. In certain scenarios, this can then result in heap OOB read/write. Users are advised to upgrade to a patched version.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
tensorflow · tensorflowWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://github.com/tensorflow/tensorflow/blob/ca6f96b62ad84207fbec580404eaa7dd7403a550/tensorflow/lite/kernels/embedding_lookup_sparse.cc#L179-L189https://github.com/tensorflow/tensorflow/commit/1de49725a5fc4e48f1a3b902ec3599ee99283043https://github.com/tensorflow/tensorflow/commit/a4e401da71458d253b05e41f28637b65baf64be4https://github.com/tensorflow/tensorflow/commit/f19be71717c497723ba0cea0379e84f061a75e01https://github.com/tensorflow/tensorflow/security/advisories/GHSA-98p5-x8x4-c9m5