UNKNOWN PyPI
CVE-2025-3136
PYSEC-2025-197 · BIT-pytorch-2025-3136 · CVE-2025-3136
Published · Modified
Description
A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
References
- ADVISORY https://vuldb.com/?id.303041
- REPORT https://github.com/ARPANET-cybersecurity/vuldb/issues/2
- REPORT https://github.com/pytorch/pytorch/issues/149821
- REPORT https://github.com/pytorch/pytorch/issues/149821#issue-2940838975
- REPORT https://github.com/pytorch/pytorch/issues/149821#issuecomment-2765311086
- REPORT https://vuldb.com/?ctiid.303041
- EVIDENCE https://vuldb.com/?submit.525252
Ready to move
Start Securing
Free, no credit card | First findings in minutes