All errata/p10/ALT-PU-2024-9087-5
ALT-PU-2024-9087-5

Package update python3-module-scipy in branch p10

Version1.6.1-alt3.p10.1
Task#350714
Published2024-06-28
Max severityCRITICAL
Severity:

Closed issues (2)

CVE-2023-25399
MEDIUM5.5

A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function. Note: This is disputed as a bug and not a vulnerability. SciPy is not designed to be exposed to untrusted users or data directly.

Published: 2023-07-05Modified: 2024-11-21
CVSS 3.xMEDIUM 5.5
CVSS:3.x/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References
CVE-2023-29824
CRITICAL9.8

A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that this is not a security issue.

Published: 2023-07-06Modified: 2024-11-21
CVSS 3.xCRITICAL 9.8
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References