https://blog.qife122.com/tags/cve-2025-54949/ Recent content in CVE-2025-54949 on 办公AI智能小助手 Hugo zh-cn qife Tue, 30 Dec 2025 12:11:23 +0800 https://blog.qife122.com/p/executorch%E5%A0%86%E7%BC%93%E5%86%B2%E5%8C%BA%E6%BA%A2%E5%87%BA%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90%E4%B8%8E%E4%BF%AE%E5%A4%8D%E6%8C%87%E5%8D%97/ Tue, 30 Dec 2025 12:11:23 +0800 https://blog.qife122.com/p/executorch%E5%A0%86%E7%BC%93%E5%86%B2%E5%8C%BA%E6%BA%A2%E5%87%BA%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90%E4%B8%8E%E4%BF%AE%E5%A4%8D%E6%8C%87%E5%8D%97/ <h1 id="executorch堆缓冲区溢出漏洞cve-2025-54949">ExecuTorch堆缓冲区溢出漏洞（CVE-2025-54949）</h1> <h2 id="漏洞详情">漏洞详情</h2> <h3 id="漏洞描述">漏洞描述</h3> <p>在加载ExecuTorch模型时存在的堆缓冲区溢出漏洞，可能导致代码执行或其他不良后果。此问题影响提交记录<code>ede82493dae6d2d43f8c424e7be4721abe5242be</code>之前的ExecuTorch版本。</p> https://blog.qife122.com/p/executorch-%E5%A0%86%E7%BC%93%E5%86%B2%E5%8C%BA%E6%BA%A2%E5%87%BA%E6%BC%8F%E6%B4%9E%E8%A7%A3%E6%9E%90%E4%B8%8E%E6%8A%80%E6%9C%AF%E5%BD%B1%E5%93%8D/ Thu, 04 Dec 2025 02:13:41 +0800 https://blog.qife122.com/p/executorch-%E5%A0%86%E7%BC%93%E5%86%B2%E5%8C%BA%E6%BA%A2%E5%87%BA%E6%BC%8F%E6%B4%9E%E8%A7%A3%E6%9E%90%E4%B8%8E%E6%8A%80%E6%9C%AF%E5%BD%B1%E5%93%8D/ <h1 id="executorch-堆缓冲区溢出漏洞--cve-2025-54949">ExecuTorch 堆缓冲区溢出漏洞 · CVE-2025-54949</h1> <h2 id="漏洞详情">漏洞详情</h2> <p><strong>包管理器及受影响组件：</strong></p> <ul> <li><strong>pip</strong> (<code>executorch</code>) <ul> <li><strong>受影响版本：</strong> <code>&lt; 0.7.0</code></li> <li><strong>已修复版本：</strong> <code>0.7.0</code></li> </ul> </li> <li><strong>Swift</strong> (<code>executorch</code>) <ul> <li><strong>受影响版本：</strong> <code>&lt; 0.7.0</code></li> <li><strong>已修复版本：</strong> <code>0.7.0</code></li> </ul> </li> <li><strong>Maven</strong> (<code>org.pytorch:executorch-android</code>) <ul> <li><strong>受影响版本：</strong> <code>&lt; 0.7.0</code></li> <li><strong>已修复版本：</strong> <code>0.7.0</code></li> </ul> </li> </ul> <p><strong>描述：</strong></p>