VYPR
High severityOSV Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

Denial of Service in Keras via Excessive Memory Allocation in HDF5 Metadata

CVE-2026-0897

Description

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service (DoS) through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive containing a valid model.weights.h5 file whose dataset declares an extremely large shape.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
kerasPyPI
>= 3.0.0, < 3.12.13.12.1
kerasPyPI
>= 3.13.0, < 3.13.23.13.2

Affected products

7

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.