CNNVD-202509-3971 Information

CNNVD ID

CNNVD-202509-3971

Related CVE

CVE-2025-46148

• CNNVD Published: 2025-09-25

Description (Chinese)

PyTorch是PyTorch开源的一个 Python 包。 PyTorch 2.6.0及之前版本存在安全漏洞，该漏洞源于nn.PairwiseDistance(p=2)在eager模式下产生错误结果。

Description (English)

PyTorch is a Python package for PyTorch open source. PyTorch 2.6.0 and previous versions had a security loophole, which stemmed from the error of nn. PairwiseDistance (p=2) under the eager model.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PyTorch

Published

2025-09-25

Last Modified

2026-02-24

References

https://gist.github.com/shaoyuyoung/4bcefba4004f8271e64b5185c95a248a https://gist.github.com/shaoyuyoung/65a587a579dfdff887b9b35bb79b9093 https://github.com/pytorch/pytorch/issues/151198 https://github.com/pytorch/pytorch/pull/152993

Patch

https://pytorch.org/get-started/previous-versions/?ajs_aid=277996d0-7b09-4ed6-9cea-e4ec582778fb