CNNVD-202601-3552 Information

CNNVD ID

CNNVD-202601-3552

Related CVE

CVE-2026-1260

• CNNVD Published: 2026-01-22

Description (Chinese)

Google SentencePiece是美国谷歌（Google）公司的一款用于基于神经网络的文本生成的无监督文本分词器。。 Google SentencePiece 0.2.1之前版本存在安全漏洞，该漏洞源于使用非正常训练过程创建的易受攻击模型文件时存在无效内存访问。

Description (English)

Google SciencePiece is an unsupervised text symmetry for the production of text based on a neural network. There was a security loophole in the pre-Google SeriesPiece 0.2.1 version, which stemmed from the presence of invalid memory access when using a vulnerability model file created by an irregular training process.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

谷歌

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/google/sentencepiece/releases/tag/v0.2.1 https://access.redhat.com/security/cve/cve-2026-1260

Patch

https://github.com/google/sentencepiece/releases