rpm package
suse/python2-numpy&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
pkg:rpm/suse/python2-numpy&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-41496 | — | < 1.16.5-150200.3.5.1 | 1.16.5-150200.3.5.1 | Dec 17, 2021 | Buffer overflow in the array_from_pyobj function of fortranobject.c in NumPy < 1.19, which allows attackers to conduct a Denial of Service attacks by carefully constructing an array with negative values. NOTE: The vendor does not agree this is a vulnerability; the negative dimens | ||
| CVE-2021-41495 | — | < 1.16.5-150200.3.5.1 | 1.16.5-150200.3.5.1 | Dec 17, 2021 | Null Pointer Dereference vulnerability exists in numpy.sort in NumPy < and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is mi | ||
| CVE-2021-33430 | — | < 1.16.5-150200.3.5.1 | 1.16.5-150200.3.5.1 | Dec 17, 2021 | A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a malicious user cause a Denial of Service. NOTE: The vendor does not agree this is a v |
- CVE-2021-41496Dec 17, 2021affected < 1.16.5-150200.3.5.1fixed 1.16.5-150200.3.5.1
Buffer overflow in the array_from_pyobj function of fortranobject.c in NumPy < 1.19, which allows attackers to conduct a Denial of Service attacks by carefully constructing an array with negative values. NOTE: The vendor does not agree this is a vulnerability; the negative dimens
- CVE-2021-41495Dec 17, 2021affected < 1.16.5-150200.3.5.1fixed 1.16.5-150200.3.5.1
Null Pointer Dereference vulnerability exists in numpy.sort in NumPy < and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is mi
- CVE-2021-33430Dec 17, 2021affected < 1.16.5-150200.3.5.1fixed 1.16.5-150200.3.5.1
A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a malicious user cause a Denial of Service. NOTE: The vendor does not agree this is a v