78 matches found
Improper Handling of Undefined Values
Overview Affected versions of this package are vulnerable to Improper Handling of Undefined Values in the torch.cummin component when compiling a model with Inductor. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted model that triggers a name...
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
PYSEC-2025-199
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
DEBIAN-CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
PYSEC-2025-199
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
UBUNTU-CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
Improper Validation of Specified Quantity in Input
Overview Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the ModularIndexing function when Inductor config is set to constantandindexpropagation=False. An attacker can cause incorrect computation results by supplying crafted input data...
Improper Validation of Specified Quantity in Input
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the ModularIndexing function when Inductor config is set to constantandindexpropagation=False. A...
Reachable Assertion
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Reachable Assertion via the nn.Fold function when used with inductor. An attacker can cause the application to terminate unexpectedly by triggering a...
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion via the nn.Fold function when used with inductor. An attacker can cause the application to terminate unexpectedly by triggering a buffer overflow error. Remediation Upgrade pytorch/pytorch to version 2.7.0-rc1 or...
CVE-2025-55560
CVE-2025-55560 affects PyTorch where a model using torch.Tensor.to_sparse() and torch.Tensor.to_dense() compiled by Inductor can cause a DoS. Connected advisories specify affected package versions: PyTorch < 2.0.0-11 and PyTorch
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
CVE-2025-46149
CVE-2025-46149 is linked to PyTorch, affecting versions before 2.7.0. When using inductor, nn.Fold triggers an assertion error, per the IBM security bulletin listing this CVE among multiple PyTorch-related issues. The IBM entry provides the concrete detail that the vulnerability manifests as an a...
Reachable Assertion
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Reachable Assertion when the model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and compiled with...
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion when the model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and compiled with Inductor. An attacker can cause the application to become unresponsive or crash by providin...
CVE-2025-55560
An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...
CVE-2025-55560
An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...
Stack-based Buffer Overflow
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Stack-based Buffer Overflow due to a regression in functorchmamlomniglot function in TorchBench. An attacker can cause a denial of service by triggeri...
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...