CNNVD-202509-3947 Information

CNNVD ID

CNNVD-202509-3947

Related CVE

CVE-2025-55557

• CNNVD Published: 2025-09-25

Description (Chinese)

PyTorch是PyTorch开源的一个 Python 包。 PyTorch 2.7.0版本存在安全漏洞，该漏洞源于使用Inductor编译包含torch.cummin的模型时出现名称错误，可能导致拒绝服务。

Description (English)

PyTorch is a Python package for PyTorch open source. Version 2.7.0 of PyTorch has a security loophole, which stems from a name error in the use of Inductor to compile a model containing torch.cummin, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PyTorch

Published

2025-09-25

Last Modified

2026-02-24

References

https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc https://github.com/pytorch/pytorch/issues/151738 https://github.com/pytorch/pytorch/pull/151931

Patch

https://github.com/pytorch/pytorch/releases