aglinxinyuan opened a new pull request, #6219: URL: https://github.com/apache/texera/pull/6219
### What changes were proposed in this PR? Bumps the **non-Linux** `torch` pin in `amber/operator-requirements.txt` from `2.12.0` to `2.12.1`. `torch` is flagged by **CVE-2025-3000** / [GHSA-rrmf-rvhw-rf47](https://github.com/advisories/GHSA-rrmf-rvhw-rf47) — a `torch.jit.script` memory-corruption (segfault when compiling a scripted class with a list attribute; CVSS 5.3, affected range `<= 2.12.0`, no upstream patched version). Only the non-Linux pin was in range; the Linux x86_64 line was already at `2.12.1+cpu`. | Platform | Before | After | | --- | --- | --- | | Linux x86_64 | `2.12.1+cpu` | `2.12.1+cpu` (unchanged) | | macOS / Windows / other | `2.12.0` (flagged) | `2.12.1` | Because the advisory's upper bound is `2.12.0`, `2.12.1` sits out of range and clears the alert — the same reason the Linux line was never flagged despite "patched version: none". Notes: - `2.12.1` has the same cp312 wheel matrix as `2.12.0` (`win_amd64`, `macosx_*_arm64`) — a patch-level move with no platform-coverage change. - [`amber/LICENSE-binary-python`](amber/LICENSE-binary-python) already records `torch==2.12.1` (generated from the Linux resolution), so there is **no license-binary drift**. - `torch.jit.script` is never called in Texera; `torch` is only a transitive runtime dependency of `transformers` (the HuggingFace operators). The vulnerable path is unreachable, so this is dependency hygiene to clear the Dependabot alert rather than a fix for a reachable exploit. ### Any related issues, documentation, discussions? Closes #6218 Advisory: [GHSA-rrmf-rvhw-rf47](https://github.com/advisories/GHSA-rrmf-rvhw-rf47) / [CVE-2025-3000](https://nvd.nist.gov/vuln/detail/CVE-2025-3000) ### How was this PR tested? Dependency-only change; no code paths are altered. Verified: - `torch==2.12.1` cp312 wheels exist on PyPI for `win_amd64` and `macosx_*_arm64` (same matrix as `2.12.0`), so the non-Linux resolution stays installable. - `2.12.1 > 2.12.0`, so the pin exits the CVE-2025-3000 `<= 2.12.0` affected range and Dependabot no longer flags it. - `amber/LICENSE-binary-python` already lists `torch==2.12.1`, so the binary-license check needs no update. ### Was this PR authored or co-authored using generative AI tooling? Generated-by: Claude Code (Opus 4.8 [1M context]) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
