Lucene search
GoogleOSV:PYSEC-2020-108HistoryNov 21, 2020 - 9:15 p.m.
PYSEC-2020-108
2020-11-2121:15:00
Google
osv.dev
43
0.002 Low
EPSS
Percentile
59.2%
DISPUTED svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service (segmentation fault) via a crafted model SVM (introduced via pickle, json, or any other model permanence standard) with a large value in the _n_support array. NOTE: the scikit-learn vendor’s position is that the behavior can only occur if the library’s API is violated by an application that changes a private attribute.
Related
gentoo
gentoo
scikit-learn: Denial of Service
2023-01-11 00:00:00
ubuntucve
ubuntucve
CVE-2020-28975
2020-11-21 00:00:00
github
github
scikit-learn Denial of Service
2022-05-24 17:34:40
cvelist
cvelist
CVE-2020-28975
2020-11-21 00:00:00
ibm
ibm
zdt
zdt
SciKit-Learn 0.23.2 Denial Of Service Vulnerability
2020-12-01 00:00:00
packetstorm
packetstorm
SciKit-Learn 0.23.2 Denial Of Service
2020-12-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-11-23 05:08:55
osv
osv
scikit-learn Denial of Service
2022-05-24 17:34:40
vulnrichment
vulnrichment
CVE-2020-28975
2020-11-21 00:00:00
nvd
nvd
CVE-2020-28975
2020-11-21 21:15:10
cve
cve
CVE-2020-28975
2020-11-21 21:15:10
prion
prion
Design/Logic Flaw
2020-11-21 21:15:00
nessus
nessus
GLSA-202301-03 : scikit-learn: Denial of Service
2023-01-11 00:00:00