CGA-hr9f-q6p3-wwhc

Published

Last updated

Package

py3.11-pytorch-cuda-12.3

Repository

Chainguard

Latest Update

Not affected

Aliases

Severity

Unknown

Status

Not affected

Justification

Inline mitigations already exist

Impact

Chainguard engineers have backported the fix for this CVE from torch v2.6.0, upstream security unit tests have been run to verify the backport.

Status

Fix not planned

Impact

Torch 2.3 is no longer maintained by upstream and so will acquire CVEs as time goes on.

Status

Under investigation

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.