—
PYSEC-2025-193
Details
A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpack_sequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Are you affected?
Enter the version of the package you're using.
Affected packages
PyPI / torch
Introduced in:
0 No fixed version published yet for torch (pip). Pin to a known-safe version or switch to an alternative.
References
- https://vuldb.com/?id.302048 [ADVISORY]
- https://vuldb.com/?submit.524198 [ADVISORY]
- https://github.com/pytorch/pytorch/issues/149622 [REPORT]
- https://github.com/pytorch/pytorch/issues/149622#issue-2935495265 [REPORT]
- https://vuldb.com/?ctiid.302048 [REPORT]