1098 matches found
PYSEC-2025-203
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service DoS when performing a slice operation...
01os (=0.0.14), 21cmpsdenoiser (>=1.0.0 <=1.0.2) +24626 more potentially affected by CVE-2025-46148 via torch (>=1.0.0 <=2.6.0)
torch PYPI version =1.0.0, =1.0.0, =0.1.0, =1.0.0, =0.1.0, =2.13.0, =0.1.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.10 and more Source cves: CVE-2025-46148 Source advisory: OSV:PYSEC-2025-198...
PYSEC-2025-199
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
CVE-2025-46150
In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results...
CVE-2025-46152
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
AZL-67884 CVE-2025-46152 affecting package pytorch for versions less than 2.2.2-9
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
PYSEC-2025-201
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
UBUNTU-CVE-2025-55551
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service DoS when performing a slice operation...
UBUNTU-CVE-2025-46148
In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistancep=2 produces incorrect results...
UBUNTU-CVE-2025-46149
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error...
UBUNTU-CVE-2025-46153
PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...
UBUNTU-CVE-2025-46150
In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results...
UBUNTU-CVE-2025-46152
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
01os (=0.0.14), 21cmpsdenoiser (>=1.0.0 <=1.0.2) +23579 more potentially affected by CVE-2025-46148 via torch (>=2.0.0 <=2.7.1)
torch PYPI version =2.0.0, =1.0.0, =0.1.0, =2.13.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.10.5, =0.10.13 and more Source cves: CVE-2025-46148 Source advisory: SNYK:PYTHON-TORCH-13052968...
Improper Validation of Specified Quantity in Input
Overview Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the ModularIndexing function when Inductor config is set to constantandindexpropagation=False. An attacker can cause incorrect computation results by supplying crafted input data...
Use of Out-of-range Pointer Offset
Overview Affected versions of this package are vulnerable to Use of Out-of-range Pointer Offset via the fractionalmaxpool function in torch.nn.FractionalMaxPool2d component when used with torch.compile. An attacker can cause inconsistent computational results by exploiting this behavior,...
Use of Out-of-range Pointer Offset
Overview torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Use of Out-of-range Pointer Offset via the fractionalmaxpool function in torch.nn.FractionalMaxPool2d component when used with torch.compile. An...
Inefficient CPU Computation
Overview Affected versions of this package are vulnerable to Inefficient CPU Computation due to inconsistent behavior in the bernoullip function when used in RNG nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d. An attacker can cause unintended or incorrect dropout behavior in neural network layers b...
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion via the nn.Fold function when used with inductor. An attacker can cause the application to terminate unexpectedly by triggering a buffer overflow error. Remediation Upgrade pytorch/pytorch to version 2.7.0-rc1 or...