Описание
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| pytorch | unfixed | package | ||
| pytorch | no-dsa | trixie | package | |
| pytorch | no-dsa | bookworm | package | |
| pytorch | postponed | bullseye | package |
Примечания
https://github.com/pytorch/pytorch/issues/151522
https://github.com/pytorch/pytorch/pull/151897
https://github.com/pytorch/pytorch/commit/225742838bcbf4656a90010257062188f7fcae82 (v2.8.0-rc1)
Связанные уязвимости
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
Уязвимость методов torch.Tensor.to_sparse() и torch.Tensor.to_dense() фреймворка машинного обучения PyTorch, позволяющая нарушителю вызвать отказ в обслуживании