[Git][security-tracker-team/security-tracker][master] Add CVE-2021-41496/numpy

Mon Dec 20 21:31:47 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b8e04826 by Salvatore Bonaccorso at 2021-12-20T22:31:15+01:00
Add CVE-2021-41496/numpy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13612,7 +13612,10 @@ CVE-2021-41498 (Buffer overflow in ajaxsoundstudio.com Pyo &lt and 1.03 in t
 CVE-2021-41497 (Null pointer reference in CMS_Conservative_increment_obj in RaRe-Techn ...)
 	TODO: check
 CVE-2021-41496 (Buffer overflow in the array_from_pyobj function of fortranobject.c in ...)
-	TODO: check
+	- numpy <unfixed>
+	NOTE: https://github.com/numpy/numpy/issues/19000
+	NOTE: https://github.com/numpy/numpy/pull/20630
+	NOTE: https://github.com/numpy/numpy/commit/271010f1037150e95017f803f4214b8861e528f2
 CVE-2021-41495 (Null Pointer Dereference vulnerability exists in numpy.sort in NumPy & ...)
 	- numpy <unfixed>
 	NOTE: https://github.com/numpy/numpy/issues/19038



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8e0482669f6cf324974a69e6ce4bf1dd3ce5914

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8e0482669f6cf324974a69e6ce4bf1dd3ce5914
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211220/4e0dab2f/attachment.htm>
