TensorFlow up to 1.6.x BMP Decoder decode_bmp_op.cc DecodeBmp out-of-bounds read

EntryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, has been found in TensorFlow up to 1.6.x. This issue affects the function DecodeBmp of the file core/kernels/decode_bmp_op.cc of the component BMP Decoder. Upgrading to version 1.7.0 eliminates this vulnerability.

Field05/05/2020 08:09 AM05/05/2020 08:14 AM
nameTensorFlowTensorFlow
version<=1.6.x<=1.6.x
componentBMP DecoderBMP Decoder
filecore/kernels/decode_bmp_op.cccore/kernels/decode_bmp_op.cc
functionDecodeBmpDecodeBmp
risk22
cvss2_vuldb_basescore6.86.8
cvss2_vuldb_tempscore5.95.9
cvss2_vuldb_avNN
cvss2_vuldb_acMM
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss3_meta_basescore6.46.4
cvss3_meta_tempscore6.16.1
cvss3_vuldb_basescore6.36.3
cvss3_vuldb_tempscore6.06.0
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
date1588550400 (05/04/2020)1588550400 (05/04/2020)
price_0day$0-$5k$0-$5k
nameUpgradeUpgrade
upgrade_version1.7.01.7.0
cveCVE-2018-21233CVE-2018-21233
cvss2_vuldb_eNDND
cvss2_vuldb_rlOFOF
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlOO
cvss3_vuldb_rcXX
cvss3_nvd_basescore6.56.5
cwe0125 (information disclosure)
cvss2_nvd_avN
cvss2_nvd_acM
cvss2_nvd_auN
cvss2_nvd_ciP
cvss2_nvd_iiN
cvss2_nvd_aiN
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiR
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iN
cvss3_nvd_aN
cve_assigned1588550400
cve_nvd_summaryTensorFlow before 1.7.0 has an integer overflow that causes an out-of-bounds read, possibly causing disclosure of the contents of process memory. This occurs in the DecodeBmp feature of the BMP decoder in core/kernels/decode_bmp_op.cc.

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!