1098 matches found
CVE-2025-55560
An issue in pytorch v2.7.0 can lead to a Denial of Service DoS when a PyTorch model consists of torch.Tensor.tosparse and torch.Tensor.todense and is compiled by Inductor...
PT-2025-39415
Name of the Vulnerable Software and Affected Versions pytorch version 2.7.0 Description A Name Error occurs when a PyTorch model includes torch.cummin and is compiled by Inductor, resulting in a Denial of Service DoS. The issue involves a naming conflict during the compilation process, leading to...
CVE-2025-46153
PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...
CVE-2025-55558
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...
CVE-2025-55552
CVE-2025-55552 concerns PyTorch v2.8.0 exhibiting unexpected behavior when using torch.rot90 and torch.randn_like together. The primary sources state the issue exists in PyTorch 2.8.0 and provide no explicit remediation in the initial description. Some connected advisories note that patched versi...
PT-2025-39382
Name of the Vulnerable Software and Affected Versions PyTorch versions prior to 2.7.0 Description The bitwise right shift function in PyTorch produces incorrect output when the other argument has certain out-of-bounds values. This issue affects versions prior to 2.7.0. Recommendations Update to...
CVE-2025-55560
CVE-2025-55560 affects PyTorch where a model using torch.Tensor.to_sparse() and torch.Tensor.to_dense() compiled by Inductor can cause a DoS. Connected advisories specify affected package versions: PyTorch < 2.0.0-11 and PyTorch
CVE-2025-46149
CVE-2025-46149 is linked to PyTorch, affecting versions before 2.7.0. When using inductor, nn.Fold triggers an assertion error, per the IBM security bulletin listing this CVE among multiple PyTorch-related issues. The IBM entry provides the concrete detail that the vulnerability manifests as an a...
Stack-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow due to a regression in functorchmamlomniglot function in TorchBench. An attacker can cause a denial of service by triggering a buffer overflow when a PyTorch model consists of torch.nn.Conv2d,...
CVE-2025-55558
CVE-2025-55558 is a buffer overflow in PyTorch 2.7.0 during compilation with Inductor for a model containing Conv2d, hardshrink, and tensor.view-torch.mv(), leading to a Denial of Service (DoS). The IBM watsonx Code Assistant On Prem bulletin documents this CVE as part of multiple vulnerabilities...
PyTorch 安全漏洞
PyTorch is a Python package open-sourced by PyTorch. PyTorch= suffers from a buffer overflow vulnerability that stems from a boundary error in the PyTorch model compilation when handling untrusted input, which can be exploited by an attacker to cause a denial of service...
CVE-2025-55558
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...
CVE-2025-55553
A syntax error in the component proxytensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service DoS...
CVE-2025-46152
In PyTorch before 2.7.0, bitwiserightshift produces incorrect output for certain out-of-bounds values of the "other" argument...
CVE-2025-55554
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nantonum-.long...
PT-2025-39416
Name of the Vulnerable Software and Affected Versions pytorch version 2.7.0 Description A buffer overflow can occur when a PyTorch model includes torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled using Inductor. This can lead to a Denial of Service Do...
CVE-2025-55551
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service DoS when performing a slice operation...
CVE-2025-55553
A syntax error in the component proxytensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service DoS...
CVE-2025-55557
A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service DoS...
CVE-2025-55558
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv and is compiled by Inductor, leading to a Denial of Service DoS...