CVE-2025-55558

PYSEC-2025-208 · BIT-pytorch-2025-55558 · CVE-2025-55558

Published Sep 25, 2025 · Modified May 20, 2026

Description

A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a Denial of Service (DoS).

References

ADVISORY https://gist.github.com/shaoyuyoung/0e7d2a586297ae9c8ed14d8706749efc
REPORT https://github.com/pytorch/pytorch/issues/151523
FIX https://github.com/pytorch/pytorch/pull/151887

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes