[Git][security-tracker-team/security-tracker][master] Add CVE-2022-45907/pytorch

Sun Nov 27 08:37:43 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1efc6d89 by Salvatore Bonaccorso at 2022-11-27T09:37:17+01:00
Add CVE-2022-45907/pytorch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57,7 +57,9 @@ CVE-2022-45909 (drachtio-server 0.8.18 has a heap-based buffer over-read via a l
 CVE-2022-45908 (In PaddlePaddle before 2.4, paddle.audio.functional.get_window is vuln ...)
 	TODO: check
 CVE-2022-45907 (In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line c ...)
-	TODO: check
+	- pytorch <unfixed>
+	NOTE: https://github.com/pytorch/pytorch/commit/767f6aa49fe20a2766b9843d01e3b7f7793df6a3
+	NOTE: https://github.com/pytorch/pytorch/issues/88868
 CVE-2022-45906
 	RESERVED
 CVE-2022-45905



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1efc6d893859bc3052b4d8017cc2caf411f3e63d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1efc6d893859bc3052b4d8017cc2caf411f3e63d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221127/c367966a/attachment.htm>
