PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. PyTorch suffers from a security vulnerability that stems from the bitwiserightshift function mishandling the boundary value of the OTHER parameter, which can be exploited by an attacker to cause an output error...

CVE-2025-46153

CVE-2025-46153 affects PyTorch before 3.7.0, where a bernoulli_p decompos e function in decompositions.py is not fully consistent with the eager CPU implementation. This inconsistency negatively affects nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d when fallback_random=True. Connected documents pr...

CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

CVE-2025-55551

An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service DoS when performing a slice operation...

PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. PyTorch suffers from a security vulnerability that stems from unexpected behavior when the torch.rot90 and torch.randnlike components are used together, no details of the vulnerability are provided at this time...

CVE-2025-55560

An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...

CVE-2025-55552

CVE-2025-55552 concerns PyTorch v2.8.0 exhibiting unexpected behavior when using torch.rot90 and torch.randn_like together. The primary sources state the issue exists in PyTorch 2.8.0 and provide no explicit remediation in the initial description. Some connected advisories note that patched versi...

PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. PyTorch suffers from a security vulnerability that stems from mishandling when compiling models containing torch.Tensor.tosparse and torch.Tensor.todense, which can be exploited by an attacker to cause a denial of service...

CVE-2025-55557

A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service DoS...

PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. PyTorch= suffers from a buffer overflow vulnerability that stems from a boundary error in the PyTorch model compilation when handling untrusted input, which can be exploited by an attacker to cause a denial of service...

CVE-2025-55560

CVE-2025-55560 affects PyTorch where a model using torch.Tensor.to_sparse() and torch.Tensor.to_dense() compiled by Inductor can cause a DoS. Connected advisories specify affected package versions: PyTorch < 2.0.0-11 and PyTorch

CVE-2025-55560

An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion when the model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and compiled with Inductor. An attacker can cause the application to become unresponsive or crash by providin...

CVE-2025-55558

A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...

CVE-2025-55558

CVE-2025-55558 is a buffer overflow in PyTorch 2.7.0 during compilation with Inductor for a model containing Conv2d, hardshrink, and tensor.view-torch.mv(), leading to a Denial of Service (DoS). The IBM watsonx Code Assistant On Prem bulletin documents this CVE as part of multiple vulnerabilities...

CVE-2025-55558

A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...

PT-2025-39380

Name of the Vulnerable Software and Affected Versions PyTorch versions prior to 2.7.0 Description When inductor is used, nn.Fold experiences an assertion error. Recommendations Update to version 2.7.0 or later...

PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. PyTorch has a security vulnerability that stems from an assertion error in nn.Fold when using inductor, no details of the vulnerability are provided at this time...

CVE-2025-46149

In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...

CVE-2025-46149

CVE-2025-46149 is linked to PyTorch, affecting versions before 2.7.0. When using inductor, nn.Fold triggers an assertion error, per the IBM security bulletin listing this CVE among multiple PyTorch-related issues. The IBM entry provides the concrete detail that the vulnerability manifests as an a...