Primary

Context

PyTorch Memory Corruption Vulnerability in Profiler Callback Function

Vulnerability

A critical memory corruption vulnerability has been identified in PyTorch versions 2.6.0 and later with CUDA 12.4. The issue arises in the Tuple Handler component, specifically within the function 'torch.ops.profiler._call_end_callbacks_on_jit_fut'. The vulnerability is triggered by passing a tuple containing a None value, which leads to a segmentation fault. This vulnerability can be exploited remotely, although the attack complexity is considered high.

Impact

Exploitation of this vulnerability causes a segmentation fault, leading to a denial of service condition by crashing the application.

Reproduction

To reproduce this vulnerability, use PyTorch version 2.6.0 with CUDA 12.4. Call the function 'torch.ops.profiler._call_end_callbacks_on_jit_fut' with a tuple that includes a None value. This will result in a segmentation fault, crashing the application.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PyTorch Memory Corruption Vulnerability in Profiler Callback Function

Vulnerability

Impact

Reproduction

Affected Products

PyTorch

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating