[Git][security-tracker-team/security-tracker][master] Add two new pytorch entries

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Apr 3 12:54:43 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c904a0a2 by Salvatore Bonaccorso at 2025-04-03T13:54:00+02:00
Add two new pytorch entries

Possibly same classification as other pytorch issues, but not checked
closer so far.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -40,7 +40,8 @@ CVE-2025-3138 (A vulnerability has been found in PHPGurukul Online Security Guar
 CVE-2025-3137 (A vulnerability, which was classified as critical, was found in PHPGur ...)
 	NOT-FOR-US: PHPGurukul
 CVE-2025-3136 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	- pytorch <unfixed>
+	NOTE: https://github.com/pytorch/pytorch/issues/149821
 CVE-2025-3135 (A vulnerability classified as critical was found in fcba_zzm ics-park  ...)
 	NOT-FOR-US: Smart Park Management System
 CVE-2025-3134 (A vulnerability classified as critical has been found in code-projects ...)
@@ -54,7 +55,8 @@ CVE-2025-3123 (A vulnerability, which was classified as critical, has been found
 CVE-2025-3122 (A vulnerability classified as problematic was found in WebAssembly wab ...)
 	TODO: check
 CVE-2025-3121 (A vulnerability classified as problematic has been found in PyTorch 2. ...)
-	TODO: check
+	- pytorch <unfixed>
+	NOTE: https://github.com/pytorch/pytorch/issues/149800
 CVE-2025-3120 (A vulnerability was found in SourceCodester Apartment Visitors Managem ...)
 	NOT-FOR-US: SourceCodester
 CVE-2025-3119 (A vulnerability was found in SourceCodester Online Tutor Portal 1.0. I ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c904a0a2b6a5e0926fc83eab7d1b9edcf5ac7563

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c904a0a2b6a5e0926fc83eab7d1b9edcf5ac7563
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250403/cce25eba/attachment.htm>

More information about the debian-security-tracker-commits mailing list