Incorrect Comparison in NumPy
Moderate severity
GitHub Reviewed
Published
Dec 18, 2021
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Dec 17, 2021
Published to the GitHub Advisory Database
Dec 18, 2021
Reviewed
Jun 21, 2022
Last updated
Jan 27, 2023
Incomplete string comparison in the numpy.core component in NumPy1.9.x, which allows attackers to fail the APIs via constructing specific string objects.
References