Skip to content
This repository has been archived by the owner on Feb 18, 2022. It is now read-only.

Security Alert - Package: numpy; Severity: MODERATE #805

Open
phenggeler opened this issue Jan 25, 2022 · 0 comments
Open

Security Alert - Package: numpy; Severity: MODERATE #805

phenggeler opened this issue Jan 25, 2022 · 0 comments

Comments

@phenggeler
Copy link

phenggeler commented Jan 25, 2022
edited 

    Affected package: numpy
    Ecosystem: PIP
    Affected version range: >= 1.9.0, < 1.21

    Summary: Buffer Overflow in NumPy
    Description: A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a malicious user cause a Denial of Service.
    identifiers: [{'type': 'GHSA', 'value': 'GHSA-6p56-wp2h-9hxr'}, {'type': 'CVE', 'value': 'CVE-2021-33430'}]

    Fixed Version: 1.21
    Created Date = January 25, 2022

    

    ---
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@phenggeler