ГлавнаяУязвимости → CVE-2025-55560
7.5высокая

CVE-2025-55560

Описание

An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.

Затрагиваемое ПО
Linuxfoundation Pytorch
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efchttps://github.com/pytorch/pytorch/issues/151522https://github.com/pytorch/pytorch/pull/151897