CNNVD-202509-3970 Information
Sep 25, 2025
cve
CNNVD ID
CNNVD-202509-3970
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
PyTorch是PyTorch开源的一个 Python 包。 PyTorch 2.7.0之前版本存在安全漏洞,该漏洞源于使用inductor时nn.Fold存在断言错误。
Description (English)
PyTorch is a Python package for PyTorch open source. There was a security loophole in the pre-PyTorch 2.7.0, which originated from an error in the assertion made by nn.Fold when using inductor.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PyTorch
Published
2025-09-25
Last Modified
2026-02-24
References
https://gist.github.com/shaoyuyoung/4bcefba4004f8271e64b5185c95a248a https://github.com/pytorch/pytorch/issues/147848 https://github.com/pytorch/pytorch/pull/147961
Patch
https://pytorch.org/get-started/previous-versions/?ajs_aid=277996d0-7b09-4ed6-9cea-e4ec582778fb
Share on: