CVE-2021-37684: Division by zero in TensorFlow Lite pooling operations
First published: Thu Aug 12 2021(Updated: )
### Impact The implementations of pooling in TFLite are vulnerable to division by 0 errors as there are no checks for divisors not being 0. ### Patches We have patched the issue in GitHub commit [dfa22b348b70bb89d6d6ec0ff53973bacb4f4695](https://github.com/tensorflow/tensorflow/commit/dfa22b348b70bb89d6d6ec0ff53973bacb4f4695). The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range. ### For more information Please consult [our security guide](https://github.com/tensorflow/tensorflow/blob/master/SECURITY.md) for more information regarding the security model and how to contact us with issues and questions. ### Attribution This vulnerability has been reported by members of the Aivul Team from Qihoo 360.
Credit: security-advisories@github.com security-advisories@github.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/tensorflow-gpu | =2.5.0 | 2.5.1 |
| pip/tensorflow-gpu | >=2.4.0<2.4.3 | 2.4.3 |
| pip/tensorflow-gpu | <2.3.4 | 2.3.4 |
| pip/tensorflow-cpu | =2.5.0 | 2.5.1 |
| pip/tensorflow-cpu | >=2.4.0<2.4.3 | 2.4.3 |
| pip/tensorflow-cpu | <2.3.4 | 2.3.4 |
| pip/tensorflow | =2.5.0 | 2.5.1 |
| pip/tensorflow | >=2.4.0<2.4.3 | 2.4.3 |
| pip/tensorflow | <2.3.4 | 2.3.4 |
| TensorFlow Keras | >=2.3.0<2.3.4 | |
| TensorFlow Keras | >=2.4.0<2.4.3 | |
| TensorFlow Keras | =2.5.0 | |
| TensorFlow Keras | =2.6.0-rc0 | |
| TensorFlow Keras | =2.6.0-rc1 | |
| TensorFlow Keras | =2.6.0-rc2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/tensorflow/tensorflow/security/advisories/GHSA-q7f7-544h-67h9
- https://nvd.nist.gov/vuln/detail/CVE-2021-37684
- https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2021-597.yaml
- https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2021-795.yaml
- https://github.com/pypa/advisory-database/tree/main/vulns/tensorflow/PYSEC-2021-306.yaml
- https://github.com/advisories/GHSA-q7f7-544h-67h9 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2021-37684?
CVE-2021-37684 has a moderate severity rating due to potential division by zero errors.
How do I fix CVE-2021-37684?
To fix CVE-2021-37684, upgrade TensorFlow to versions 2.3.4, 2.4.3, or 2.5.1 or later.
Which versions of TensorFlow are affected by CVE-2021-37684?
CVE-2021-37684 affects TensorFlow versions 2.3.0 to 2.3.4, 2.4.0 to 2.4.3, and specific 2.6.0 release candidates.
What type of error does CVE-2021-37684 introduce?
CVE-2021-37684 introduces a division by zero error due to lack of checks for zero divisors in pooling implementations.
Is CVE-2021-37684 specific to a platform?
No, CVE-2021-37684 affects the TensorFlow software library regardless of the underlying platform.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/weakness
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-q7f7-544h-67h9
- alias/CVE-2021-37684
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/author
- collector/github-advisory
- agent/trending
- agent/source
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/pip
- vendor/google
- canonical/tensorflow keras
- version/tensorflow keras/2.3.0
- version/tensorflow keras/2.4.0
- version/tensorflow keras/2.5.0
- version/tensorflow keras/2.6.0-rc0
- version/tensorflow keras/2.6.0-rc1
- version/tensorflow keras/2.6.0-rc2