CVE-2025-55560 unknown —
—
FIX debian 9mo ago
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
CVE-2025-55558 unknown —
—
FIX debian 9mo ago
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a…
CVE-2025-55557 unknown —
—
FIX debian 9mo ago
A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).
CVE-2025-55554 unknown —
—
debian 9mo ago
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().
CVE-2025-55553 unknown —
—
FIX debian 9mo ago
A syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS).
CVE-2025-55552 unknown —
—
FIX debian 9mo ago
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.
CVE-2025-10911 medium 5.5
5.5
FIX sles debian 9mo ago
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
CVE-2025-55551 unknown —
—
FIX debian 9mo ago
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.
CVE-2025-46153 unknown —
—
FIX debian 9mo ago
PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d…
CVE-2025-46152 unknown —
—
FIX debian 9mo ago
In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.
CVE-2025-46150 unknown —
—
FIX debian 9mo ago
In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results.
CVE-2025-46149 unknown —
—
FIX debian 9mo ago
In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error.
CVE-2025-46148 unknown —
—
FIX debian 9mo ago
In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.
CVE-2025-59343 unknown —
—
FIX sles debian ubuntu 9mo ago
tar-fs vulnerabilities
CVE-2025-8869 unknown —
—
FIX sles debian 9mo ago
When extracting a tar archive pip may not check symbolic links point into the extraction directory if the tarfile module doesn't implement PEP 706. Note that upgrading pip to a "fixed" version for th…
CVE-2025-58457 unknown —
—
FIX debian 9mo ago
Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands
CVE-2025-58674 medium 5.9
5.9
FIX debian 9mo ago
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WordPress allows Stored XSS. WordPress core security team is aware of the issue and working on a …
CVE-2025-58246 medium 4.3
4.3
FIX debian 9mo ago
Insertion of Sensitive Information Into Sent Data vulnerability in WordPress allows Retrieve Embedded Sensitive Data. The WordPress Core security team is aware of the issue and is already working on …
CVE-2025-10824 medium 5.3
5.3
debian 9mo ago
A vulnerability was determined in axboe fio up to 3.41. This impacts the function __parse_jobs_ini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launch…
CVE-2025-39694 medium 5.5
5.5
FIX rhel sles debian 9mo ago
Moderate: kernel security update
CVE-2025-38498 medium 5.5
5.5
FIX rhel rocky sles 9mo ago
Moderate: kernel security update
CVE-2025-37810 medium —
5.5
FIX rhel sles debian 9mo ago
Moderate: kernel security update
CVE-2025-10585 unknown —
1.5
KEV FIX debian 9mo ago
Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-53125 medium —
5.5
FIX rhel sles debian 9mo ago
Moderate: kernel security update
CVE-2025-47910 unknown —
—
FIX debian sles 9mo ago
When using http.CrossOriginProtection, the AddInsecureBypassPattern method can unexpectedly bypass more requests than intended. CrossOriginProtection then skips validation, but forwards the original …
CVE-2025-59420 unknown —
—
FIX debian 9mo ago
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.4, Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), vi…
CVE-2025-9905 unknown —
—
debian 9mo ago
The Keras `Model.load_model` method **silently** ignores `safe_mode=True` and allows arbitrary code execution when a `.h5`/`.hdf5` file is loaded.
CVE-2025-39865 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39857 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39848 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39847 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39846 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39845 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39844 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39842 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39838 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-9906 unknown —
—
debian 9mo ago
Keras is vulnerable to Deserialization of Untrusted Data
CVE-2025-8671 unknown —
—
FIX debian sles 9mo ago
A mismatch caused by client-triggered server-sent stream resets between HTTP/2 specifications and the internal architectures of some HTTP/2 implementations may result in excessive server resource con…
CVE-2025-6395 medium 6.5
6.5
FIX rhel rocky debian 9mo ago
RHSA-2025:17415: gnutls security, bug fix, and enhancement update (Moderate)
CVE-2025-58767 medium —
5.5
FIX rocky rhel sles 9mo ago
RHSA-2025:23062: ruby:3.3 security update (Moderate)
CVE-2025-5399 medium —
5.5
FIX arch debian sles 9mo ago
Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the applica…
CVE-2025-53023 medium —
5.5
FIX rocky rhel debian 9mo ago
RHSA-2025:16861: mysql:8.0 security update (Moderate)
CVE-2025-50104 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50102 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50101 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50100 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50099 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50098 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50097 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50096 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50094 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50093 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50092 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50091 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50088 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50087 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50086 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50085 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50084 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50083 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50082 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50081 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50080 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50079 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50078 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-50077 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-32990 medium —
5.5
FIX rhel rocky debian 9mo ago
RHSA-2025:17415: gnutls security, bug fix, and enhancement update (Moderate)
CVE-2025-32989 medium 5.3
5.3
FIX rhel debian sles gnu redhat 9mo ago
Moderate: gnutls security, bug fix, and enhancement update
CVE-2025-30722 medium —
5.5
FIX rocky rhel sles 9mo ago
Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vu…
CVE-2025-30721 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30715 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30705 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30704 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30703 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30699 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30696 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30695 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30693 medium —
5.5
FIX rocky rhel sles 9mo ago
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability a…
CVE-2025-30689 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30688 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30687 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30685 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30684 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30683 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30682 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-30681 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21588 medium —
5.5
FIX rhel rocky debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21585 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21584 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21581 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21580 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21579 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21577 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21575 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-21574 medium —
5.5
FIX rocky rhel debian 9mo ago
Moderate: mysql:8.4 security update
CVE-2024-13176 medium —
5.5
FIX debian sles almalinux 9mo ago
Moderate: mysql:8.4 security update
CVE-2025-59432 unknown —
—
FIX debian sles 9mo ago
Timing Attack Vulnerability in SCRAM Authentication
CVE-2025-41249 unknown —
—
debian 9mo ago
Spring Framework annotation detection mechanism may result in improper authorization
CVE-2025-39827 medium 5.5
5.5
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
CVE-2025-39813 medium 4.7
4.7
FIX sles debian linux-kernel 9mo ago
Linux kernel (Xilinx) vulnerabilities
