rpm package
opensuse/python-scikit-learn&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/python-scikit-learn&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-5206 | — | < 1.5.0-1.1 | 1.5.0-1.1 | Jun 6, 2024 | A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the unexpected storage of all tokens present in the training data wit | ||
| CVE-2020-28975 | — | < 1.6.1-1.1 | 1.6.1-1.1 | Nov 21, 2020 | svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service (segmentation fault) via a crafted model SVM (introduced via pickle, json, or any other model permanence standard) with a large value in |
- CVE-2024-5206Jun 6, 2024affected < 1.5.0-1.1fixed 1.5.0-1.1
A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the unexpected storage of all tokens present in the training data wit
- CVE-2020-28975Nov 21, 2020affected < 1.6.1-1.1fixed 1.6.1-1.1
svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service (segmentation fault) via a crafted model SVM (introduced via pickle, json, or any other model permanence standard) with a large value in