CVE-2014-1858

Опубликовано: 08 янв. 2018

Источник: debian

Описание

__init__.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file.

Пакет	Статус	Версия исправления	Релиз	Тип
python-numpy	fixed	1:1.8.1~rc1-1		package
python-numpy	no-dsa		squeeze	package
python-numpy	no-dsa		wheezy	package

CVE-2014-1858

CVSS3: 5.5

ubuntu

около 8 лет назад

__init__.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file.

CVE-2014-1858

redhat

около 12 лет назад

__init__.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file.

CVE-2014-1858

CVSS3: 5.5

nvd

около 8 лет назад

__init__.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file.

GHSA-cw6w-4rcx-xphc

CVSS3: 5.5

github

больше 3 лет назад

Arbitrary file write in NumPy