Описание
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| pytorch | unfixed | package | ||
| pytorch | no-dsa | trixie | package | |
| pytorch | no-dsa | bookworm | package | |
| pytorch | postponed | bullseye | package |
Примечания
https://github.com/pytorch/pytorch/issues/142853
https://github.com/pytorch/pytorch/pull/143460
Fixed by: https://github.com/pytorch/pytorch/commit/288aa873831057b1eb7d747914ec4fdc76c23a80 (v2.7.0-rc1)
EPSS
Связанные уязвимости
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallback_random=True.
Уязвимость функции bernoulli_p decompose() фреймворка машинного обучения PyTorch, позволяющая нарушителю оказать воздействие на конфиденциальность защищаемой информации
EPSS