all InfoSec news
Reported TorchServe Issue (CVE-2023-43654)
Latest Bulletins aws.amazon.com
Publication Date: 2023/10/02 02:00 PM EDT
AWS is aware of CVE-2023-43654 and CVE-2022-1471 in PyTorch TorchServe versions 0.3.0 to 0.8.1, which use a version of the SnakeYAML v1.31 open source library. TorchServe version 0.8.2 resolves these issues. AWS recommends customers using PyTorch inference Deep Learning Containers (DLC) 1.13.1, 2.0.0, or 2.0.1 in EC2, EKS, or ECS released prior to September 11, 2023, update to TorchServe version 0.8.2.
Customers using PyTorch inference Deep Learning Containers (DLC) through Amazon SageMaker are …
aware aws containers customers cve deep learning ec2 ecs eks issue library open source pytorch version