CNNVD-202511-904 Information
Nov 10, 2025
cve
CNNVD ID
CNNVD-202511-904
Related CVE
- CNNVD Published: 2025-11-10
Description (Chinese)
Oneflow是Oneflow开源的一个深度学习框架。 OneFlow v0.9.0版本存在安全漏洞,该漏洞源于输入验证不当,可能导致在广播或类型转换期间添加Python序列时出现分段违规。
Description (English)
OneFlow is an in-depth learning framework for OneFlow open source. OneFlow v0.9.0 has a security loophole, which results from inappropriate input validation, which may lead to sub-rules when adding Python sequences during broadcast or type conversion.
Hazard Level
High
Vulnerability Type
其他
Published
2025-11-10
Last Modified
2026-02-24
References
http://oneflow.com https://github.com/Daisy2ang https://github.com/Oneflow-Inc/oneflow https://github.com/Oneflow-Inc/oneflow/issues/10666
Patch
https://github.com/Oneflow-Inc/oneflow/releases
Share on: