VYPR

rpm package

opensuse/python-scikit-learn&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/python-scikit-learn&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2024-5206Jun 6, 2024
    affected < 1.5.0-1.1fixed 1.5.0-1.1

    A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the unexpected storage of all tokens present in the training data wit

  • CVE-2020-28975Nov 21, 2020
    affected < 1.6.1-1.1fixed 1.6.1-1.1

    svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service (segmentation fault) via a crafted model SVM (introduced via pickle, json, or any other model permanence standard) with a large value in