CNNVD-202601-4690 Information

CNNVD ID

CNNVD-202601-4690

Related CVE

CVE-2025-71001

• CNNVD Published: 2026-01-28

Description (Chinese)

Oneflow是Oneflow开源的一个深度学习框架。 Oneflow v0.9.0版本存在安全漏洞，该漏洞源于flow.column_stack组件存在分段违规，可能导致拒绝服务攻击。

Description (English)

OneFlow is an in-depth learning framework for OneFlow open source. Oneflow v0.9.0 has a security loophole, which stems from a breakout of the Flow.column stack component, which may lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Oneflow

Published

2026-01-28

Last Modified

2026-02-24

References

http://oneflow.com https://github.com/Daisy2ang https://github.com/Oneflow-Inc/oneflow/issues/10658

Patch

https://github.com/Oneflow-Inc/oneflow/releases