YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
PyTorch .pt Legacy Format OOM PoC
Summary
Missing numel validation in _legacy_load() -> persistent_load() in torch/serialization.py.
A 334-byte crafted .pt file triggers 1-4 GiB allocation on torch.load().
Bypasses weights_only=True safety mode.
Files
poc_generate.py- generates crafted files, tests OOM with memory limitpytorch_oom_poc_1gb.pt- pre-crafted, targets 1 GiBpytorch_oom_poc_4gb.pt- pre-crafted, targets 4 GiB
Reproduce
pip install torch
python3 poc_generate.py --test --gb 1
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support