PyTorch Machine Learning Framework Compromised with Malicious Dependency



January 02, 2023 at 07:57PM

The maintainers of the PyTorch package have warned users who have installed the nightly builds of the library between December 25, 2022, and December 30, 2022, to uninstall and download the latest versions following a dependency confusion attack. "PyTorch-nightly Linux packages installed via pip during that time installed a dependency, torchtriton, which was compromised on the Python Package

from The Hacker News https://ift.tt/eysc2aF

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post