Search for packages
| purl | pkg:pypi/torch@2.9.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-epa6-xw1j-4uch | A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpack_sequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. |
BIT-pytorch-2025-2999
CVE-2025-2999 GHSA-vgrw-7cvw-pwgx PYSEC-2025-193 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-15T01:55:08.878049+00:00 | GHSA Importer | Fixing | VCID-epa6-xw1j-4uch | https://github.com/advisories/GHSA-vgrw-7cvw-pwgx | 38.6.0 |
| 2026-06-13T15:13:30.884354+00:00 | GitLab Importer | Fixing | VCID-epa6-xw1j-4uch | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/torch/CVE-2025-2999.yml | 38.6.0 |
| 2026-06-12T07:54:06.673342+00:00 | GithubOSV Importer | Fixing | VCID-epa6-xw1j-4uch | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-vgrw-7cvw-pwgx/GHSA-vgrw-7cvw-pwgx.json | 38.6.0 |