こんにちは！🐰です。今日はPythonのpickleモジュールに潜む深刻な脆弱性について解説します。pickleは便利なシリアライゼーションツールですが、信頼できないソースからのデータを扱う際には重大なセキュリティリスクがあります。 最近、Hugging FaceやPyTorch ...

皆さん、こんにちは！Pythonプログラミングの世界では、潜在的なセキュリティリスクである逆シリアル化攻撃が存在します。逆シリアル化攻撃について掘り下げる前に、私たちにとってシリアル化と逆シリアル化が何であるかを理解することは不可欠です。

Python pickle is what other framework calls serialization, marshalling etc. When you hear pickling, think marshalling ie. object graph to intermediate format, and when you hear unpickling, think ...

Picklescan flaws allowed attackers to bypass scans and execute hidden code in malicious PyTorch models before the latest patch.

Many machine learning (ML) models are Python pickle files under the hood, and it makes sense. The use of pickling conserves memory, enables start-and-stop model training, and makes trained models ...

From this point, you can safely assume that what's pickled with pickle.dumps() in Python 2 can be converted back to the real object in Python 3 with pickle.loads(), and vise versa. However, note that ...

Three critical zero-day vulnerabilities affecting PickleScan, a widely used tool for scanning Python pickle files and PyTorch models, have been uncovered by cybersecurity researchers. The flaws, all ...