torch@2.1.0 vulnerabilities

Tensors and Dynamic neural networks in Python with strong GPU acceleration

latest version

2.3.0
latest non vulnerable version

2.3.0
first published

5 years ago
latest version published

17 days ago
licenses detected
- BSD-3-Clause
  [0,)
View torch package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the torch package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Heap-based Buffer Overflow torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the `/runtime/vararg_functions.cpp` component. An attacker can cause a crash or potentially execute arbitrary code by supplying crafted input. How to fix Heap-based Buffer Overflow? Upgrade `torch` to version 2.2.0 or higher.	[,2.2.0)
H Use After Free torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration Affected versions of this package are vulnerable to Use After Free due to improper handling of memory in the `interpreter.cpp` component. An attacker can execute arbitrary code or cause a denial of service. How to fix Use After Free? Upgrade `torch` to version 2.2.0 or higher.	[,2.2.0)

Heap-based Buffer Overflow

torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration

Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the /runtime/vararg_functions.cpp component. An attacker can cause a crash or potentially execute arbitrary code by supplying crafted input.

How to fix Heap-based Buffer Overflow?

Upgrade torch to version 2.2.0 or higher.

[,2.2.0)

Use After Free

torch is a Tensors and Dynamic neural networks in Python with strong GPU acceleration

Affected versions of this package are vulnerable to Use After Free due to improper handling of memory in the interpreter.cpp component. An attacker can execute arbitrary code or cause a denial of service.

How to fix Use After Free?

Upgrade torch to version 2.2.0 or higher.

[,2.2.0)

Go back to all versions of this package

torch@2.1.0 vulnerabilities

Tensors and Dynamic neural networks in Python with strong GPU acceleration

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities