All errata/sisyphus/ALT-PU-2017-2852-2
ALT-PU-2017-2852-2

Package update python-module-numpy in branch sisyphus

Version1.13.3-alt1
Task#196409
Published2026-02-04
Max severityHIGH
Severity:

Closed issues (2)

CVE-2017-12852
HIGH7.5

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.

Published: 2017-08-15Modified: 2025-04-20
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
GHSA-frgw-fgh6-9g52
HIGH7.5

Numpy missing input validation

Published: 2022-05-13Modified: 2022-06-18
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References