aglinxinyuan opened a new pull request, #6219:
URL: https://github.com/apache/texera/pull/6219

   ### What changes were proposed in this PR?
   
   Bumps the **non-Linux** `torch` pin in `amber/operator-requirements.txt` 
from `2.12.0` to `2.12.1`.
   
   `torch` is flagged by **CVE-2025-3000** / 
[GHSA-rrmf-rvhw-rf47](https://github.com/advisories/GHSA-rrmf-rvhw-rf47) — a 
`torch.jit.script` memory-corruption (segfault when compiling a scripted class 
with a list attribute; CVSS 5.3, affected range `<= 2.12.0`, no upstream 
patched version). Only the non-Linux pin was in range; the Linux x86_64 line 
was already at `2.12.1+cpu`.
   
   | Platform | Before | After |
   | --- | --- | --- |
   | Linux x86_64 | `2.12.1+cpu` | `2.12.1+cpu` (unchanged) |
   | macOS / Windows / other | `2.12.0` (flagged) | `2.12.1` |
   
   Because the advisory's upper bound is `2.12.0`, `2.12.1` sits out of range 
and clears the alert — the same reason the Linux line was never flagged despite 
"patched version: none".
   
   Notes:
   - `2.12.1` has the same cp312 wheel matrix as `2.12.0` (`win_amd64`, 
`macosx_*_arm64`) — a patch-level move with no platform-coverage change.
   - [`amber/LICENSE-binary-python`](amber/LICENSE-binary-python) already 
records `torch==2.12.1` (generated from the Linux resolution), so there is **no 
license-binary drift**.
   - `torch.jit.script` is never called in Texera; `torch` is only a transitive 
runtime dependency of `transformers` (the HuggingFace operators). The 
vulnerable path is unreachable, so this is dependency hygiene to clear the 
Dependabot alert rather than a fix for a reachable exploit.
   
   ### Any related issues, documentation, discussions?
   
   Closes #6218
   
   Advisory: 
[GHSA-rrmf-rvhw-rf47](https://github.com/advisories/GHSA-rrmf-rvhw-rf47) / 
[CVE-2025-3000](https://nvd.nist.gov/vuln/detail/CVE-2025-3000)
   
   ### How was this PR tested?
   
   Dependency-only change; no code paths are altered. Verified:
   
   - `torch==2.12.1` cp312 wheels exist on PyPI for `win_amd64` and 
`macosx_*_arm64` (same matrix as `2.12.0`), so the non-Linux resolution stays 
installable.
   - `2.12.1 > 2.12.0`, so the pin exits the CVE-2025-3000 `<= 2.12.0` affected 
range and Dependabot no longer flags it.
   - `amber/LICENSE-binary-python` already lists `torch==2.12.1`, so the 
binary-license check needs no update.
   
   ### Was this PR authored or co-authored using generative AI tooling?
   
   Generated-by: Claude Code (Opus 4.8 [1M context])
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to