Search for packages
| purl | pkg:pypi/scikit-learn@1.0.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-eugr-crnj-77dc
Aliases: CVE-2024-5206 GHSA-jw8x-6495-233v PYSEC-2024-110 |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-fd91-hz39-73fy | svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23.2 and other products, allows attackers to cause a denial of service (segmentation fault) via a crafted model SVM (introduced via pickle, json, or any other model permanence standard) with a large value in the _n_support array. NOTE: the scikit-learn vendor's position is that the behavior can only occur if the library's API is violated by an application that changes a private attribute. |
CVE-2020-28975
GHSA-jxfp-4rvq-9h9m PYSEC-2020-108 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-12T19:31:42.166622+00:00 | GitLab Importer | Affected by | VCID-eugr-crnj-77dc | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/scikit-learn/CVE-2024-5206.yml | 38.6.0 |
| 2026-06-12T18:21:00.671375+00:00 | GitLab Importer | Fixing | VCID-fd91-hz39-73fy | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/scikit-learn/CVE-2020-28975.yml | 38.6.0 |
| 2026-06-12T08:20:29.191310+00:00 | GithubOSV Importer | Fixing | VCID-fd91-hz39-73fy | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-jxfp-4rvq-9h9m/GHSA-jxfp-4rvq-9h9m.json | 38.6.0 |
| 2026-06-12T04:18:42.355448+00:00 | Pypa Importer | Affected by | VCID-eugr-crnj-77dc | https://github.com/pypa/advisory-database/blob/main/vulns/scikit-learn/PYSEC-2024-110.yaml | 38.6.0 |
| 2026-06-11T20:30:43.727684+00:00 | GHSA Importer | Fixing | VCID-fd91-hz39-73fy | https://github.com/advisories/GHSA-jxfp-4rvq-9h9m | 38.6.0 |