[Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2024-5206/scikit-learn
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 13 05:30:22 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
406e66bc by Salvatore Bonaccorso at 2025-10-13T06:29:32+02:00
Track fix via experimental for CVE-2024-5206/scikit-learn
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -149350,6 +149350,7 @@ CVE-2024-5225 (An SQL Injection vulnerability exists in the berriai/litellm repo
CVE-2024-5221 (The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site ...)
NOT-FOR-US: WordPress plugin
CVE-2024-5206 (A sensitive data leakage vulnerability was identified in scikit-learn' ...)
+ [experimental] - scikit-learn 1.7.2+dfsg-1
- scikit-learn <unfixed> (bug #1074234; unimportant)
NOTE: https://huntr.com/bounties/14bc0917-a85b-4106-a170-d09d5191517c
NOTE: https://github.com/scikit-learn/scikit-learn/commit/70ca21f106b603b611da73012c9ade7cd8e438b8 (1.5.0rc1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/406e66bc69233e8ecb26fe0d265f940ccf749de0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/406e66bc69233e8ecb26fe0d265f940ccf749de0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251013/1c822354/attachment.htm>
More information about the debian-security-tracker-commits
mailing list