CNNVD-202509-3944 Information

CNNVD ID

CNNVD-202509-3944

Related CVE

CVE-2025-55560

• CNNVD Published: 2025-09-25

Description (Chinese)

PyTorch是PyTorch开源的一个 Python 包。 PyTorch 2.7.0版本存在安全漏洞，该漏洞源于编译包含torch.Tensor.to_sparse和torch.Tensor.to_dense的模型时处理不当，可能导致拒绝服务。

Description (English)

PyTorch is a Python package for PyTorch open source. There is a security loophole in PyTorch version 2.7.0, which stems from the inappropriate handling of the compilation of models containing torch.Tensor.to sparse and torch.Tensor.to dense, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PyTorch

Published

2025-09-25

Last Modified

2026-02-24

References

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc https://github.com/pytorch/pytorch/issues/151522 https://github.com/pytorch/pytorch/pull/151897

Patch

https://github.com/pytorch/pytorch/releases