CVE-2025-55560 affecting package pytorch for versions less than 2.0.0-11

CVE-2025-55560 affecting package pytorch for versions less than 2.0.0-11. A patched version of the package is available...

CVE-2025-46152 affecting package pytorch for versions less than 2.2.2-9

CVE-2025-46152 affecting package pytorch for versions less than 2.2.2-9. A patched version of the package is available...

CVE-2025-55560 affecting package pytorch for versions less than 2.2.2-9

CVE-2025-55560 affecting package pytorch for versions less than 2.2.2-9. A patched version of the package is available...

CVE-2025-55552 affecting package pytorch for versions less than 2.0.0-10

CVE-2025-55552 affecting package pytorch for versions less than 2.0.0-10. A patched version of the package is available...

CVE-2025-55552 affecting package pytorch for versions less than 2.2.2-8

CVE-2025-55552 affecting package pytorch for versions less than 2.2.2-8. A patched version of the package is available...

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses torch - 2.2.0+cpu which is vulnerable to CVE-2025-32434.

Summary IBM Maximo Application Suite - Monitor Component uses torch - 2.2.0+cpu which is vulnerable to CVE-2025-32434. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-32434 DESCRIPTION: PyTorch is a Python package that provides tensor...

Picklescan Bugs Allow Malicious PyTorch Models to Evade Scans and Execute Code

Three critical security flaws have been disclosed in an open-source utility called Picklescan that could allow malicious actors to execute arbitrary code by loading untrusted PyTorch models, effectively bypassing the tool's protections. Picklescan, developed and maintained by Matthieu Maitre...

Debian dla-4389 : libtorch-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4389 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4389-1 [email protected] https://www.debian.org/lts/security/...

[SECURITY] [DLA 4389-1] pytorch security update

Debian LTS Advisory DLA-4389-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 01, 2025 https://wiki.debian.org/LTS Package : pytorch Version : 1.7.1-7+deb11u1 CVE ID : CVE-2025-32434 A possible remote code execution RCE vulnerability has been discovered i...

DLA-4389-1 pytorch - security update

Bulletin has no description...

Debian: Security Advisory (DLA-4389-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-62164

A vulnerability in vLLM allows attackers to supply malicious serialized prompt-embedding tensors that are deserialized using torch.load without validation. Due to PyTorch 2.8.0 disabling sparse-tensor integrity checks by default, a crafted tensor can bypass bounds checks and cause an out-of-bound...

CVE-2025-63396

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS. Mitigation Mitigation for this issue is either not available or the currently available options do...

CVE-2025-62164 VLLM deserialization vulnerability leading to DoS and potential RCE

vLLM is an inference and serving engine for large language models LLMs. From versions 0.10.2 to before 0.11.1, a memory corruption vulnerability could lead to a crash denial-of-service and potentially remote code execution RCE, exists in the Completions API endpoint. When processing user-supplied...

CVE-2025-62164

The CVE affects vLLM (inference/serving engine) before 0.11.1, where the Completions API loads user-supplied prompt embeddings with torch.load() lacking proper validation. A PyTorch 2.8.0 change disables sparse-tensor invariants checks, allowing crafted tensors to bypass bounds checks and trigger...

CVE-2025-62164 VLLM deserialization vulnerability leading to DoS and potential RCE

vLLM is an inference and serving engine for large language models LLMs. From versions 0.10.2 to before 0.11.1, a memory corruption vulnerability could lead to a crash denial-of-service and potentially remote code execution RCE, exists in the Completions API endpoint. When processing user-supplied...

GHSA-MRW7-HF4F-83PF vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

vLLM deserialization vulnerability leading to DoS and potential RCE

Summary A memory corruption vulnerability that leading to a crash denial-of-service and potentially remote code execution RCE exists in vLLM versions 0.10.2 and later, in the Completions API endpoint. When processing user-supplied prompt embeddings, the endpoint loads serialized tensors using...

PyTorch torch.nn.utils.rnn.pad_packed_sequence memory corruption

...

Researchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference Frameworks

Cybersecurity researchers have uncovered critical remote code execution vulnerabilities impacting major artificial intelligence AI inference engines, including those from Meta, Nvidia, Microsoft, and open-source PyTorch projects such as vLLM and SGLang. "These vulnerabilities all traced back to t...