Integer overflow in Tensorflow
Description
Tensorflow is an Open Source Machine Learning Framework. The implementation of OpLevelCostEstimator::CalculateTensorSize is vulnerable to an integer overflow if an attacker can create an operation which would involve a tensor with large enough number of elements. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also affected and still in supported range.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
tensorflowPyPI | < 2.5.3 | 2.5.3 |
tensorflowPyPI | >= 2.6.0, < 2.6.3 | 2.6.3 |
tensorflowPyPI | >= 2.7.0, < 2.7.1 | 2.7.1 |
tensorflow-cpuPyPI | < 2.5.3 | 2.5.3 |
tensorflow-cpuPyPI | >= 2.6.0, < 2.6.3 | 2.6.3 |
tensorflow-cpuPyPI | >= 2.7.0, < 2.7.1 | 2.7.1 |
tensorflow-gpuPyPI | < 2.5.3 | 2.5.3 |
tensorflow-gpuPyPI | >= 2.6.0, < 2.6.3 | 2.6.3 |
tensorflow-gpuPyPI | >= 2.7.0, < 2.7.1 | 2.7.1 |
Affected products
1- Range: >= 2.7.0, < 2.7.1
Patches
1fcd18ce3101fPrevent integer overflow in `OpLevelCostEstimator::CalculateTensorSize`.
1 file changed · +7 −1
tensorflow/core/grappler/costs/op_level_cost_estimator.cc+7 −1 modified@@ -1555,7 +1555,13 @@ int64_t OpLevelCostEstimator::CalculateTensorSize( int64_t count = CalculateTensorElementCount(tensor, found_unknown_shapes); int size = DataTypeSize(BaseType(tensor.dtype())); VLOG(2) << "Count: " << count << " DataTypeSize: " << size; - return count * size; + int64_t tensor_size = MultiplyWithoutOverflow(count, size); + if (tensor_size < 0) { + VLOG(1) << "Overflow encountered when computing tensor size, multiplying " + << count << " with " << size; + return -1; + } + return tensor_size; } int64_t OpLevelCostEstimator::CalculateInputSize(const OpInfo& op_info,
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
7- github.com/advisories/GHSA-c94w-c95p-phf8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-23575ghsaADVISORY
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-cpu/PYSEC-2022-84.yamlghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/tensorflow-gpu/PYSEC-2022-139.yamlghsaWEB
- github.com/tensorflow/tensorflow/blob/a1320ec1eac186da1d03f033109191f715b2b130/tensorflow/core/grappler/costs/op_level_cost_estimator.ccghsax_refsource_MISCWEB
- github.com/tensorflow/tensorflow/commit/fcd18ce3101f245b083b30655c27b239dc72221eghsax_refsource_MISCWEB
- github.com/tensorflow/tensorflow/security/advisories/GHSA-c94w-c95p-phf8ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.