Lucene search
K

7 matches found

Github Security Blog
Github Security Blog
added 2026/06/19 7:35 p.m.21 views

containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

9.6CVSS6AI score0.00412EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/19 7:35 p.m.6 views

GHSA-33VJ-92QQ-66HC containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

8.4CVSS6AI score0.00412EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/16 6:17 p.m.22 views

CVE-2026-47750 stable-diffusion.cpp: Heap buffer overflow in GLOBAL opcode parsing for PyTorch checkpoint files

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the GLOBAL opcode...

7.8CVSS0.0018EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.16 views

PT-2026-49750

Name of the Vulnerable Software and Affected Versions stable-diffusion.cpp versions prior to master-584-0a7ae07 Description A heap buffer overflow exists in the SHORT BINUNICODE parsing for PyTorch checkpoint files within the pickle .ckpt parser in src/model.cpp. The issue stems from sign confusi...

7.8CVSS6.4AI score0.00203EPSS
Exploits1References7
CVE
CVE
added 2026/01/27 9:13 p.m.304 views

CVE-2026-24747

PyTorch prior to v2.10.0 is vulnerable to memory corruption and potential arbitrary code execution via the weights_only unpickler when loading a malicious .pth checkpoint with torch.load(..., weights_only=True). Affected software is PyTorch (Python tensor computation package); the issue is fixed ...

8.8CVSS6.1AI score0.00695EPSS
Exploits1References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/24 6:18 p.m.8 views

CVE-2025-14926

A flaw was found in the Hugging Face Transformers library. The convertconfig function fails to validate a user-supplied string before using it to execute Python code. An attacker can exploit this flaw by providing a malicious SEW model checkpoint, causing arbitrary code execution in the context o...

8.8CVSS8AI score0.00278EPSS
Exploits0References4
Veracode
Veracode
added 2025/10/16 1:31 p.m.7 views

Insecure Deserialization

monai is vulnerable to Insecure Deserialization. The vulnerability is due to loading of untrusted checkpoint files like torch.load used without safe guards. This allows an attacker to supply a crafted checkpoint that executes arbitrary code during deserialization...

8.8CVSS7.4AI score0.00684EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder