fix(deps): update dependency onnx to v1.22.0 [security]#6993
Merged
Conversation
Signed-off-by: oep-renovate[bot] <212772560+oep-renovate[bot]@users.noreply.github.com>
sys-geti
previously approved these changes
Jul 8, 2026
⏱️ Backend import time —
|
| Accelerator | Cumulative (s) | Self (s) |
|---|---|---|
cpu |
4.473 | 0.003 |
xpu |
4.501 | 0.003 |
cuda |
4.960 | 0.003 |
|
Codecov Report✅ All modified and coverable lines are covered by tests. 📢 Thoughts on this report? Let us know! |
🐳 Docker image sizes
|
📊 Test coverage report
|
itallix
approved these changes
Jul 8, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
==1.21.0→==1.22.0ONNX has Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs)
CVE-2026-44512 / GHSA-hwpq-hmq9-wj77
More information
Details
Summary
Null pointer dereference (SIGSEGV) in
Upsample_6_7::adapt_upsample_6_7()(onnx/version_converter/adapters/upsample_6_7.h:31) whenconvert_version()processes a model with an Upsample node that has zero inputs. The adapter accessesnode->inputs()[0]->sizes()without checking input count. 107-byte PoC crashes on Release build.This is the same class of bug as the Cast adapter advisory (separate report) but in a different adapter, different file, and different operator.
Details
The Upsample 6→7 adapter validates attributes but not inputs:
The PoC has an Upsample node at opset 6 with the required
width_scaleandheight_scaleattributes but zero inputs. The attribute assertions pass, thennode->inputs()[0]on an emptyArrayRef:NDEBUG): bounds-check assertion compiled out → reads garbage pointer → SIGSEGVassert(Index < Length)atarray_ref.h:159→ SIGABRTAn Upsample node with zero inputs passes
graphProtoToGraph()because the import code only resolves input names present in the protobuf.PoC
107-byte PoC. Confirmed SIGSEGV on both onnx 1.21.0 (pip) and 1.22.0 (source build).
Impact
Any application that uses
onnx.version_converter.convert_version()on untrusted models is vulnerable. This includes model conversion pipelines and tools that auto-upgrade opset versions for compatibility. The crash is unrecoverable (SIGSEGV).This vulnerability is part of a systemic pattern across multiple version converter adapters. A full audit of all ~45 adapters was performed as part of the fix; eight adapters were found with the same class of unguarded indexed access (cast_9_8, softmax_12_13, softmax_13_12, upsample_6_7, upsample_9_10, group_normalization_20_21, broadcast_forward_compatibility, upsample_9_8) and all have been fixed in PR #7813.
Severity
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HReferences
This data is provided by OSV and the GitHub Advisory Database (CC-BY 4.0).
Release Notes
onnx/onnx (onnx)
v1.22.0Compare Source
ONNX v1.22.0 is now available with exciting new features! We would like to thank everyone who contributed to this release!
Please visit onnx.ai to learn more about ONNX and associated projects.
What's Changed
Breaking Changes and Deprecations
Spec and Operator
Two new operators
LinearAttention-27andCausalConvWithState-27were introduced.Reference Implementation
Utilities and Tools
Build, CI and Tests
Documentation
<in Cast FLOAT8E8M0 docs table by @Copilot in #7936Other Changes
New Contributors
Full Changelog: onnx/onnx@v1.21.0...v1.22.0
Configuration
📅 Schedule: (UTC)
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate.