Medium severity5.5NVD Advisory· Published May 21, 2022· Updated Jun 17, 2026
CVE-2022-29213
CVE-2022-29213
Description
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the tf.compat.v1.signal.rfft2d and tf.compat.v1.signal.rfft3d lack input validation and under certain condition can result in crashes (due to CHECK-failures). Versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4 contain a patch for this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
tensorflowPyPI | < 2.6.4 | 2.6.4 |
tensorflowPyPI | >= 2.7.0, < 2.7.2 | 2.7.2 |
tensorflowPyPI | >= 2.8.0, < 2.8.1 | 2.8.1 |
tensorflow-cpuPyPI | < 2.6.4 | 2.6.4 |
tensorflow-cpuPyPI | >= 2.7.0, < 2.7.2 | 2.7.2 |
tensorflow-cpuPyPI | >= 2.8.0, < 2.8.1 | 2.8.1 |
tensorflow-gpuPyPI | < 2.6.4 | 2.6.4 |
tensorflow-gpuPyPI | >= 2.7.0, < 2.7.2 | 2.7.2 |
tensorflow-gpuPyPI | >= 2.8.0, < 2.8.1 | 2.8.1 |
Affected products
5- osv-coords4 versions
< 2.6.4+ 3 more
- (no CPE)range: < 2.6.4
- (no CPE)range: < 2.6.4
- (no CPE)range: < 2.6.4
- (no CPE)range: < 2.6.4
- Range: < 2.6.4
Patches
Vulnerability mechanics
References
10- github.com/tensorflow/tensorflow/commit/0a8a781e597b18ead006d19b7d23d0a369e9ad73nvdPatchThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/pull/55274nvdIssue TrackingPatchThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/issues/55263nvdExploitIssue TrackingThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/security/advisories/GHSA-5889-7v45-q28mnvdExploitPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-5889-7v45-q28mghsaADVISORY
- github.com/tensorflow/tensorflow/releases/tag/v2.6.4nvdRelease NotesThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/releases/tag/v2.7.2nvdRelease NotesThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/releases/tag/v2.8.1nvdRelease NotesThird Party AdvisoryWEB
- github.com/tensorflow/tensorflow/releases/tag/v2.9.0nvdRelease NotesThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2022-29213ghsaADVISORY
News mentions
0No linked articles in our index yet.