[Git][security-tracker-team/security-tracker][master] Mark several CVEs for pytorch as postponed for bullseye
Utkarsh Gupta (@utkarsh)
utkarsh at debian.org
Sun Dec 7 14:22:44 GMT 2025
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1944aeb0 by Utkarsh Gupta at 2025-12-07T19:52:32+05:30
Mark several CVEs for pytorch as postponed for bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -22657,6 +22657,7 @@ CVE-2025-46150 (In PyTorch before 2.7.0, when torch.compile is used, FractionalM
- pytorch <unfixed> (bug #1116540)
[trixie] - pytorch <no-dsa> (Minor issue)
[bookworm] - pytorch <no-dsa> (Minor issue)
+ [bullseye] - pytorch <postponed> (Minor issue)
NOTE: https://github.com/pytorch/pytorch/issues/141538
NOTE: https://github.com/pytorch/pytorch/pull/144395
NOTE: Fixed by: https://github.com/pytorch/pytorch/commit/ccc2878c978258ec88f7ec591305ba5b13e06579 (v2.7.0-rc1)
@@ -22664,6 +22665,7 @@ CVE-2025-46149 (In PyTorch before 2.7.0, when inductor is used, nn.Fold has an a
- pytorch <unfixed> (bug #1116541)
[trixie] - pytorch <no-dsa> (Minor issue)
[bookworm] - pytorch <no-dsa> (Minor issue)
+ [bullseye] - pytorch <postponed> (Minor issue)
NOTE: https://github.com/pytorch/pytorch/issues/147848
NOTE: https://github.com/pytorch/pytorch/pull/147961
NOTE: Fixed by: https://github.com/pytorch/pytorch/commit/be830c8b1c496277491bbbdd40a5cb35de17d5fb (v2.7.0-rc1)
@@ -22671,6 +22673,7 @@ CVE-2025-46148 (In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistanc
- pytorch <unfixed> (bug #1116543)
[trixie] - pytorch <no-dsa> (Minor issue)
[bookworm] - pytorch <no-dsa> (Minor issue)
+ [bullseye] - pytorch <postponed> (Minor issue)
NOTE: https://github.com/pytorch/pytorch/issues/151198
NOTE: https://github.com/pytorch/pytorch/pull/152993
NOTE: Fixed by: https://github.com/pytorch/pytorch/commit/e5f869999cf5429e24fbb5c3923a5c795549b9e7 (v2.8.0-rc1)
@@ -68893,6 +68896,7 @@ CVE-2025-4287 (A vulnerability was found in PyTorch 2.6.0+cu124. It has been rat
- pytorch <unfixed> (bug #1104931)
[trixie] - pytorch <no-dsa> (Minor issue)
[bookworm] - pytorch <no-dsa> (Minor issue)
+ [bullseye] - pytorch <postponed> (Minor issue)
NOTE: https://github.com/pytorch/pytorch/issues/150836
NOTE: https://github.com/pytorch/pytorch/pull/150923
CVE-2025-4286 (A vulnerability was found in Intelbras InControl up to 2.21.59. It has ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1944aeb0e4e8ec02e0f8e32aadb976a2fafba196
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1944aeb0e4e8ec02e0f8e32aadb976a2fafba196
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251207/e1ce29fa/attachment.htm>
More information about the debian-security-tracker-commits
mailing list