5.3 MEDIUM
- CVSS version: 3.1
- Attack vector (AV):
- Attack complexity (AC):
- Privileges required (PR):
- User interaction (UI):
- Scope (S):
- Confidentiality impact (C):
- Integrity impact (I):
- Availability impact (A):
PyTorch pt2 Loading deserialization
A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The project was informed of the problem early through a pull request but has not reacted yet.
References
- VDB-352326 | PyTorch pt2 Loading deserialization vdb-entry
- VDB-352326 | CTI Indicators (IOB, IOC) signature permissions-required
- Submit #774681 | pytorch PyTorch 2.10.0 Release deserialize third-party-advisory
- https://github.com/pytorch/pytorch/pull/176791 issue-tracking exploit patch
- https://github.com/pytorch/pytorch/ product
Affected products
- ==2.10.0
Matching in nixpkgs
pkgs.python312Packages.gpytorch
Highly efficient and modular implementation of Gaussian Processes, with GPU acceleration
pkgs.python313Packages.gpytorch
Highly efficient and modular implementation of Gaussian Processes, with GPU acceleration
pkgs.python314Packages.gpytorch
Highly efficient and modular implementation of Gaussian Processes, with GPU acceleration
pkgs.python312Packages.pytorch3d
FAIR's library of reusable components for deep learning with 3D data
-
nixos-25.11 pytorch3d-0.7.8
- nixos-25.11-small pytorch3d-0.7.8
- nixpkgs-25.11-darwin pytorch3d-0.7.8
pkgs.python313Packages.pytorch3d
FAIR's library of reusable components for deep learning with 3D data
-
nixos-unstable pytorch3d-0.7.9
- nixpkgs-unstable pytorch3d-0.7.9
- nixos-unstable-small pytorch3d-0.7.9
-
nixos-25.11 pytorch3d-0.7.8
- nixos-25.11-small pytorch3d-0.7.8
- nixpkgs-25.11-darwin pytorch3d-0.7.8
pkgs.python314Packages.pytorch3d
FAIR's library of reusable components for deep learning with 3D data
-
nixos-unstable pytorch3d-0.7.9
- nixpkgs-unstable pytorch3d-0.7.9
- nixos-unstable-small pytorch3d-0.7.9
pkgs.python312Packages.pytorchviz
Small package to create visualizations of PyTorch execution graphs
-
nixos-25.11 0.0.2-unstable-2024-12-30
- nixos-25.11-small 0.0.2-unstable-2024-12-30
- nixpkgs-25.11-darwin 0.0.2-unstable-2024-12-30
pkgs.python313Packages.pytorchviz
Small package to create visualizations of PyTorch execution graphs
-
nixos-unstable 0.0.2-unstable-2024-12-30
- nixpkgs-unstable 0.0.2-unstable-2024-12-30
- nixos-unstable-small 0.0.2-unstable-2024-12-30
-
nixos-25.11 0.0.2-unstable-2024-12-30
- nixos-25.11-small 0.0.2-unstable-2024-12-30
- nixpkgs-25.11-darwin 0.0.2-unstable-2024-12-30
pkgs.python314Packages.pytorchviz
Small package to create visualizations of PyTorch execution graphs
-
nixos-unstable 0.0.2-unstable-2024-12-30
- nixpkgs-unstable 0.0.2-unstable-2024-12-30
- nixos-unstable-small 0.0.2-unstable-2024-12-30
pkgs.python312Packages.lion-pytorch
Optimizer tuned by Google Brain using genetic algorithms
pkgs.python313Packages.lion-pytorch
Optimizer tuned by Google Brain using genetic algorithms
pkgs.python314Packages.lion-pytorch
Optimizer tuned by Google Brain using genetic algorithms
pkgs.python312Packages.pytorch-bench
Benchmarking tool for torch
-
nixos-25.11 2024-07-18
- nixos-25.11-small 2024-07-18
- nixpkgs-25.11-darwin 2024-07-18
pkgs.python313Packages.pytorch-bench
Benchmarking tool for torch
-
nixos-unstable 2024-07-18
- nixpkgs-unstable 2024-07-18
- nixos-unstable-small 2024-07-18
-
nixos-25.11 2024-07-18
- nixos-25.11-small 2024-07-18
- nixpkgs-25.11-darwin 2024-07-18
pkgs.python314Packages.pytorch-bench
Benchmarking tool for torch
-
nixos-unstable 2024-07-18
- nixpkgs-unstable 2024-07-18
- nixos-unstable-small 2024-07-18
pkgs.python312Packages.pytorch-memlab
Simple and accurate CUDA memory management laboratory for pytorch
pkgs.python312Packages.pytorch-msssim
Fast and differentiable MS-SSIM and SSIM for pytorch
pkgs.python312Packages.pytorch-tabnet
PyTorch implementation of TabNet
pkgs.python313Packages.pytorch-memlab
Simple and accurate CUDA memory management laboratory for pytorch
pkgs.python313Packages.pytorch-msssim
Fast and differentiable MS-SSIM and SSIM for pytorch
pkgs.python313Packages.pytorch-tabnet
PyTorch implementation of TabNet
pkgs.python314Packages.pytorch-memlab
Simple and accurate CUDA memory management laboratory for pytorch
pkgs.python314Packages.pytorch-msssim
Fast and differentiable MS-SSIM and SSIM for pytorch
pkgs.python314Packages.pytorch-tabnet
PyTorch implementation of TabNet
pkgs.pkgsRocm.python3Packages.gpytorch
Highly efficient and modular implementation of Gaussian Processes, with GPU acceleration
pkgs.python312Packages.facenet-pytorch
Pretrained Pytorch face detection (MTCNN) and facial recognition (InceptionResnet) models
pkgs.python313Packages.facenet-pytorch
Pretrained Pytorch face detection (MTCNN) and facial recognition (InceptionResnet) models
pkgs.python314Packages.facenet-pytorch
Pretrained Pytorch face detection (MTCNN) and facial recognition (InceptionResnet) models
pkgs.pkgsRocm.python3Packages.pytorch3d
FAIR's library of reusable components for deep learning with 3D data
-
nixos-unstable pytorch3d-0.7.9
- nixpkgs-unstable pytorch3d-0.7.9
- nixos-unstable-small pytorch3d-0.7.9
-
nixos-25.11 pytorch3d-0.7.8
- nixos-25.11-small pytorch3d-0.7.8
- nixpkgs-25.11-darwin pytorch3d-0.7.8
pkgs.pkgsRocm.python3Packages.pytorchviz
Small package to create visualizations of PyTorch execution graphs
-
nixos-unstable 0.0.2-unstable-2024-12-30
- nixpkgs-unstable 0.0.2-unstable-2024-12-30
- nixos-unstable-small 0.0.2-unstable-2024-12-30
-
nixos-25.11 0.0.2-unstable-2024-12-30
- nixos-25.11-small 0.0.2-unstable-2024-12-30
- nixpkgs-25.11-darwin 0.0.2-unstable-2024-12-30
pkgs.python312Packages.pytorch-lightning
Lightweight PyTorch wrapper for machine learning researchers
pkgs.python313Packages.pytorch-lightning
Lightweight PyTorch wrapper for machine learning researchers
pkgs.python314Packages.pytorch-lightning
Lightweight PyTorch wrapper for machine learning researchers
pkgs.python312Packages.pytorch-pfn-extras
Supplementary components to accelerate research and development in PyTorch
pkgs.python312Packages.pytorch-tokenizers
C++ implementations for various tokenizers (sentencepiece, tiktoken, etc.)
pkgs.python313Packages.pytorch-pfn-extras
Supplementary components to accelerate research and development in PyTorch
pkgs.python313Packages.pytorch-tokenizers
C++ implementations for various tokenizers (sentencepiece, tiktoken, etc.)
pkgs.python314Packages.pytorch-pfn-extras
Supplementary components to accelerate research and development in PyTorch
pkgs.python314Packages.pytorch-tokenizers
C++ implementations for various tokenizers (sentencepiece, tiktoken, etc.)
pkgs.pkgsRocm.python3Packages.lion-pytorch
Optimizer tuned by Google Brain using genetic algorithms
pkgs.pkgsRocm.python3Packages.pytorch-bench
Benchmarking tool for torch
-
nixos-unstable 2024-07-18
- nixpkgs-unstable 2024-07-18
- nixos-unstable-small 2024-07-18
-
nixos-25.11 2024-07-18
- nixos-25.11-small 2024-07-18
- nixpkgs-25.11-darwin 2024-07-18
pkgs.pkgsRocm.python3Packages.pytorch-memlab
Simple and accurate CUDA memory management laboratory for pytorch
pkgs.pkgsRocm.python3Packages.pytorch-msssim
Fast and differentiable MS-SSIM and SSIM for pytorch
pkgs.pkgsRocm.python3Packages.pytorch-tabnet
PyTorch implementation of TabNet
pkgs.pkgsRocm.python3Packages.facenet-pytorch
Pretrained Pytorch face detection (MTCNN) and facial recognition (InceptionResnet) models
pkgs.python312Packages.pytorch-metric-learning
Metric learning library for PyTorch
pkgs.python313Packages.pytorch-metric-learning
Metric learning library for PyTorch
pkgs.python314Packages.pytorch-metric-learning
Metric learning library for PyTorch
pkgs.pkgsRocm.python3Packages.pytorch-lightning
Lightweight PyTorch wrapper for machine learning researchers
pkgs.pkgsRocm.python3Packages.pytorch-pfn-extras
Supplementary components to accelerate research and development in PyTorch
pkgs.pkgsRocm.python3Packages.pytorch-tokenizers
C++ implementations for various tokenizers (sentencepiece, tiktoken, etc.)
pkgs.python312Packages.nvidia-dlprof-pytorch-nvtx
NVIDIA DLProf Pytorch NVTX markers
pkgs.python313Packages.nvidia-dlprof-pytorch-nvtx
NVIDIA DLProf Pytorch NVTX markers
pkgs.python314Packages.nvidia-dlprof-pytorch-nvtx
NVIDIA DLProf Pytorch NVTX markers
Package maintainers
-
@lucasew Lucas Eduardo Wendt <lucas59356@gmail.com>
-
@veprbl Dmitry Kalinkin <veprbl@gmail.com>
-
@bcdarwin Ben Darwin <bcdarwin@gmail.com>
-
@drupol Pol Dellaiera <pol.dellaiera@protonmail.com>
-
@tbenst Tyler Benster <nix@tylerbenster.com>
-
@GaetanLepage Gaetan Lepage <gaetan@glepage.com>
-
@samuela Samuel Ainsworth <skainsworth@gmail.com>
-
@SomeoneSerge Else Someone <else+nixpkgs@someonex.net>
-
@pbsds Peder Bergebakken Sundt <pbsds@hotmail.com>
-
@jherland Johan Herland <johan@herland.net>