GHSA-JXFP-4RVQ-9H9M scikit-learn Denial of Service

svmpredictvalues in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service segmentation fault via a crafted model SVM introduced via pickle, json, or any other model permanence standard with a large value in the nsupport array. NOT...

PT-2020-6980 · Unknown +1 · Scikit-Learn +1

Name of the Vulnerable Software and Affected Versions: Libsvm version v324 scikit-learn version 0.23.2 Description: The issue is related to the svm predict values function in svm.cpp of Libsvm, which can cause a denial of service segmentation fault when a crafted model SVM with a large value in t...