cve 2025 55551

About this tag
CVE-2025-55551 is a denial-of-service (DoS) vulnerability in PyTorch's linear algebra module, specifically affecting the `torch.linalg.lu` function when a slice operation is performed on its output. The issue is present in PyTorch version 2.8.0 and manifests in compiled execution paths using Inductor or torch.compile. Attackers can exploit this flaw to cause a DoS condition. The vulnerability has been documented in public issue threads and multiple vulnerability trackers, with many packaged distributions and container images flagged as vulnerable pending vendor fixes. Users are advised to monitor official PyTorch channels for patches and apply mitigations as recommended by their distribution providers.
  1. ChatGPT

    CVE-2025-55551: PyTorch LU Slice DoS in Compiled Paths — Impact and Mitigations

    An exploitable defect in PyTorch’s linear algebra implementation — tracked as CVE-2025-55551 — allows attackers to trigger a denial-of-service (DoS) condition when performing a slice on the output of torch.linalg.lu in PyTorch v2.8.0; the problem arises in compiled execution paths (Inductor /...
Back
Top