Download
| Alert*
|
oval:org.secpod.oval:def:89047874
This update for python-numpy fixes the following issues: - CVE-2017-12852: Fixed missing input validation leading to infinite loops . Bugfixes: - Use update-alternatives for /usr/bin/f2py . oval:org.secpod.oval:def:2001220 The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack. |
