UbuntuUpdates.org

Package "numpy"

Name: numpy

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • NumPy documentation
  • Fast array facility to the Python 3 language

Latest version: 1:1.21.5-1ubuntu22.10.1
Release: kinetic (22.10)
Level: security
Repository: main

Links



Other versions of "numpy" in Kinetic

Repository Area Version
base main 1:1.21.5-1build2
updates main 1:1.21.5-1ubuntu22.10.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1:1.21.5-1ubuntu22.10.1 2022-12-07 07:07:19 UTC

  numpy (1:1.21.5-1ubuntu22.10.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: buffer overflow vulnerability
    - debian/patches/CVE-2021-41496.patch: f2py: Simplify creation of an
      exception message.
    - CVE-2021-41496
  * SECURITY UPDATE: insecure string comparison in descriptor.c
    - debian/patches/CVE-2021-34141.patch: Remove deprecated numeric style
      dtype strings
    - CVE-2021-34141
  * SECURITY UPDATE: null pointer dereference vulnerability
    - debian/patches/CVE-2021-41495.patch: review return values for
      PyArray_DescrNew
    - CVE-2021-41495

 -- Nishit Majithia <email address hidden> Fri, 02 Dec 2022 17:50:06 +0530

CVE-2021-41496 ** DISPUTED ** Buffer overflow in the array_from_pyobj function of fortranobject.c in NumPy < 1.19, which allows attackers to conduct a Denial of Ser
CVE-2021-34141 An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by construc
CVE-2021-41495 ** DISPUTED ** Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing retu



About   -   Send Feedback to @ubuntu_updates