Download
| Alert*
oval:org.secpod.oval:def:1900013
An issue was discovered in NumPy 1.16.0 and earlier. It uses the picklePython module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, as demonstrated by a numpy.load call. oval:org.secpod.oval:def:89050671 This update for python-numpy fixes the following issue: Security issue fixed: - CVE-2019-6446: Set allow_pickle to false by default to restrict loading untrusted content . With this update we decrease the possibility of allowing remote attackers to execute arbitrary code by misusing numpy.load. A wa ... oval:org.secpod.oval:def:89003251 This update for python-numpy fixes the following issues: Security issue fixed: - CVE-2019-6446: Set allow_pickle to false by default to restrict loading untrusted content . With this update we decrease the possibility of allowing remote attackers to execute arbitrary code by misusing numpy.load. A w ... oval:org.secpod.oval:def:89003038 This update for python-numpy fixes the following issue: Security issue fixed: - CVE-2019-6446: Set allow_pickle to false by default to restrict loading untrusted content . With this update we decrease the possibility of allowing remote attackers to execute arbitrary code by misusing numpy.load. A wa ... oval:org.secpod.oval:def:504402 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. Security Fix: * numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code execution * ... oval:org.secpod.oval:def:2500042 The numpy packages provide NumPY. NumPY is an extension to the Python programming language, which adds support for large, multi-dimensional arrays and matrices, and a library of mathematical functions that operate on such arrays. oval:org.secpod.oval:def:503400 The numpy packages provide NumPY. NumPY is an extension to the Python programming language, which adds support for large, multi-dimensional arrays and matrices, and a library of mathematical functions that operate on such arrays. Security Fix: * numpy: crafted serialized object passed in numpy.load ... oval:org.secpod.oval:def:1505300 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89050875 This update for python-numpy fixes the following issues: Non-security issues fixed: - Updated to upstream version 1.16.1 oval:org.secpod.oval:def:89050602 This update for python-numpy fixes the following issues: Non-security issues fixed: - Updated to upstream version 1.16.1 oval:org.secpod.oval:def:1504318 [1:1.14.3-9] - Fix CVE-2019-6446 resolves: #1668466 [1:1.14.3-8] - Rebuild with fixed gating.yaml related: #1687873 [1:1.14.3-7] - Fix broken float128 on all arches except x86_64 resolves: #1687873 oval:org.secpod.oval:def:66840 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. Security Fix: * numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code execution * ... oval:org.secpod.oval:def:2500000 Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. oval:org.secpod.oval:def:66498 The numpy packages provide NumPY. NumPY is an extension to the Python programming language, which adds support for large, multi-dimensional arrays and matrices, and a library of mathematical functions that operate on such arrays. Security Fix: * numpy: crafted serialized object passed in numpy.load ... |