cvelist/2021/29xxx/CVE-2021-29548.json

{
    "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2021-29548",
        "STATE": "PUBLIC",
        "TITLE": "Division by 0 in `QuantizedBatchNormWithGlobalNormalization`"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "tensorflow",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "< 2.1.4"
                                        },
                                        {
                                            "version_value": ">= 2.2.0, < 2.2.3"
                                        },
                                        {
                                            "version_value": ">= 2.3.0, < 2.3.3"
                                        },
                                        {
                                            "version_value": ">= 2.4.0, < 2.4.2"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "tensorflow"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in `tf.raw_ops.QuantizedBatchNormWithGlobalNormalization`. This is because the implementation(https://github.com/tensorflow/tensorflow/blob/55a97caa9e99c7f37a0bbbeb414dc55553d3ae7f/tensorflow/core/kernels/quantized_batch_norm_op.cc) does not validate all constraints specified in the op's contract(https://www.tensorflow.org/api_docs/python/tf/raw_ops/QuantizedBatchNormWithGlobalNormalization). The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range."
            }
        ]
    },
    "impact": {
        "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "CWE-369: Divide By Zero"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-p45v-v4pw-77jr",
                "refsource": "CONFIRM",
                "url": "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-p45v-v4pw-77jr"
            },
            {
                "name": "https://github.com/tensorflow/tensorflow/commit/d6ed5bcfe1dcab9e85a4d39931bd18d99018e75b",
                "refsource": "MISC",
                "url": "https://github.com/tensorflow/tensorflow/commit/d6ed5bcfe1dcab9e85a4d39931bd18d99018e75b"
            }
        ]
    },
    "source": {
        "advisory": "GHSA-p45v-v4pw-77jr",
        "discovery": "UNKNOWN"
    }
}
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`{`
			`"CVE_data_meta": {`
Add CVE-2021-29548 for GHSA-p45v-v4pw-77jr 2021-05-14 13:08:50 -06:00			`"ASSIGNER": "security-advisories@github.com",`
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`"ID": "CVE-2021-29548",`
Add CVE-2021-29548 for GHSA-p45v-v4pw-77jr 2021-05-14 13:08:50 -06:00			`"STATE": "PUBLIC",`
			"TITLE": "Division by 0 in `QuantizedBatchNormWithGlobalNormalization`"
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`},`
Add CVE-2021-29548 for GHSA-p45v-v4pw-77jr 2021-05-14 13:08:50 -06:00			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "tensorflow",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "< 2.1.4"`
			`},`
			`{`
			`"version_value": ">= 2.2.0, < 2.2.3"`
			`},`
			`{`
			`"version_value": ">= 2.3.0, < 2.3.3"`
			`},`
			`{`
			`"version_value": ">= 2.4.0, < 2.4.2"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "tensorflow"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
Add CVE-2021-29548 for GHSA-p45v-v4pw-77jr 2021-05-14 13:08:50 -06:00			"value": "TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in `tf.raw_ops.QuantizedBatchNormWithGlobalNormalization`. This is because the implementation(https://github.com/tensorflow/tensorflow/blob/55a97caa9e99c7f37a0bbbeb414dc55553d3ae7f/tensorflow/core/kernels/quantized_batch_norm_op.cc) does not validate all constraints specified in the op's contract(https://www.tensorflow.org/api_docs/python/tf/raw_ops/QuantizedBatchNormWithGlobalNormalization). The fix will be included in TensorFlow 2.5.0. We will also cherrypick this commit on TensorFlow 2.4.2, TensorFlow 2.3.3, TensorFlow 2.2.3 and TensorFlow 2.1.4, as these are also affected and still in supported range."
			`}`
			`]`
			`},`
			`"impact": {`
			`"cvss": {`
			`"attackComplexity": "HIGH",`
			`"attackVector": "LOCAL",`
			`"availabilityImpact": "LOW",`
			`"baseScore": 2.5,`
			`"baseSeverity": "LOW",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "NONE",`
			`"privilegesRequired": "LOW",`
			`"scope": "UNCHANGED",`
			`"userInteraction": "NONE",`
			`"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",`
			`"version": "3.1"`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "CWE-369: Divide By Zero"`
			`}`
			`]`
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`}`
			`]`
Add CVE-2021-29548 for GHSA-p45v-v4pw-77jr 2021-05-14 13:08:50 -06:00			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-p45v-v4pw-77jr",`
			`"refsource": "CONFIRM",`
			`"url": "https://github.com/tensorflow/tensorflow/security/advisories/GHSA-p45v-v4pw-77jr"`
			`},`
			`{`
			`"name": "https://github.com/tensorflow/tensorflow/commit/d6ed5bcfe1dcab9e85a4d39931bd18d99018e75b",`
			`"refsource": "MISC",`
			`"url": "https://github.com/tensorflow/tensorflow/commit/d6ed5bcfe1dcab9e85a4d39931bd18d99018e75b"`
			`}`
			`]`
			`},`
			`"source": {`
			`"advisory": "GHSA-p45v-v4pw-77jr",`
			`"discovery": "UNKNOWN"`
"-Synchronized-Data." 2021-03-30 18:00:40 +00:00			`}`
			`}`