{"id":"PYSEC-2024-251","details":"Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp.","aliases":["BIT-pytorch-2024-31583","CVE-2024-31583","GHSA-pg7h-5qx3-wjr3"],"modified":"2025-06-11T06:29:21.475649Z","published":"2024-04-17T19:15:07Z","references":[{"type":"FIX","url":"https://github.com/pytorch/pytorch/commit/9c7071b0e324f9fb68ab881283d6b8d388a4bcd2"},{"type":"WEB","url":"https://gist.github.com/1047524396/43e19a41f2b36503a4a228c32cdbc176"},{"type":"WEB","url":"https://github.com/pytorch/pytorch/blob/v2.1.2/torch/csrc/jit/mobile/interpreter.cpp#L132"}],"affected":[{"package":{"name":"torch","ecosystem":"PyPI","purl":"pkg:pypi/torch"},"ranges":[{"type":"GIT","repo":"https://github.com/pytorch/pytorch","events":[{"introduced":"0"},{"fixed":"9c7071b0e324f9fb68ab881283d6b8d388a4bcd2"},{"fixed":"9c7071b0e324f9fb68ab881283d6b8d388a4bcd2"}]},{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.2.0"}]}],"versions":["1.0.0","1.0.1","1.1.0","1.10.0","1.10.1","1.10.2","1.11.0","1.12.0","1.12.1","1.13.0","1.13.1","1.2.0","1.3.0","1.3.1","1.4.0","1.5.0","1.5.1","1.6.0","1.7.0","1.7.1","1.8.0","1.8.1","1.9.0","1.9.1","2.0.0","2.0.1","2.1.0","2.1.1","2.1.2"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/torch/PYSEC-2024-251.yaml"}}],"schema_version":"1.7.3"}