PT-2025-39383 · Pytorch+1 · Pytorch+1
Published
2024-12-11
·
Updated
2025-10-05
·
CVE-2025-46153
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
PyTorch versions prior to 3.7.0
Description
The software contains an inconsistency in the
bernoulli p decompose function within decompositions.py. This function does not fully align with the eager CPU implementation, which impacts the functionality of nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d when fallback random is set to True.Recommendations
Update to version 3.7.0 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Pytorch