Fedora 44 SentencePiece Memory Access Issue Advisory 2026-314504fd18
fedora
June 9, 2026
Update to 0.2.1
Summary
The SentencePiece is an unsupervised text tokenizer for Neural Network-based
text generation.
It is an unsupervised text tokenizer and detokenizer mainly for
Neural Network-based text generation systems where the vocabulary size is
predetermined prior to the neural model training.
SentencePiece implements subword units and unigram language model with the
extension of direct training from raw sentences.
SentencePiece allows us to make a purely end-to-end system that does not
depend on language-specific pre/post-processing.
Update Information:
Update to 0.2.1
Change Log
* Tue May 19 2026 Peter Robinson
References
[ 1 ] Bug #2432139 - CVE-2026-1260 sentencepiece: Sentencepiece: Invalid memory access leading to potential arbitrary code execution via a crafted model file. [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2432139
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-314504fd18' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: sentencepiece
Product: Fedora 44
Version: 0.2.1
Release: 1.fc44
Summary: An unsupervised text tokenizer for Neural Network-based text generation
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!