CNNVD-202509-3968 Information

CNNVD ID

CNNVD-202509-3968

Related CVE

CVE-2025-46152

• CNNVD Published: 2025-09-25

Description (Chinese)

PyTorch是PyTorch开源的一个 Python 包。 PyTorch 2.7.0之前版本存在安全漏洞，该漏洞源于bitwise_right_shift函数对other参数边界值处理不当，可能导致输出错误。

Description (English)

PyTorch is a Python package for PyTorch open source. There is a security loophole in the previous version of PyTorch 2.7.0, which stems from the mishandling of the bitwise right Shift function of the boundary value of the other parameter, which may lead to an output error.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PyTorch

Published

2025-09-25

Last Modified

2026-02-24

References

https://gist.github.com/shaoyuyoung/4bcefba4004f8271e64b5185c95a248a https://github.com/pytorch/pytorch/issues/143555 https://github.com/pytorch/pytorch/pull/143635

Patch

https://pytorch.org/get-started/previous-versions/?ajs_aid=277996d0-7b09-4ed6-9cea-e4ec582778fb