2453930 – (CVE-2026-34445) CVE-2026-34445 ONNX: ONNX: Denial of Service and potential information disclosure via malicious model metadata

Bug 2453930 (CVE-2026-34445) - CVE-2026-34445 ONNX: ONNX: Denial of Service and potential information disclosure via malicious model metadata

Summary: CVE-2026-34445 ONNX: ONNX: Denial of Service and potential information disclo...

Keywords:
Status:	NEW
Alias:	CVE-2026-34445
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2454892 2454893 2454894
Blocks:
TreeView+	depends on / blocked

Reported:	2026-04-01 18:02 UTC by OSIDB Bzimport
Modified:	2026-04-10 16:46 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-04-01 18:02:12 UTC

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, the ExternalDataInfo class in ONNX was using Python’s setattr() function to load metadata (like file paths or data lengths) directly from an ONNX model file. It didn’t check if the "keys" in the file were valid. Due to this, an attacker could craft a malicious model that overwrites internal object properties. This issue has been patched in version 1.21.0.

Note You need to log in before you can comment on or make changes to this bug.