CVE-2017-12852

Опубликовано: 15 авг. 2017

Источник: debian

EPSS Низкий

Описание

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
python-numpy	fixed	1:1.14.3-1		package

Примечания

https://github.com/numpy/numpy/issues/9560#issuecomment-322395292
Negligible security impact

EPSS

Процентиль: 74%

0.00808

Низкий

Связанные уязвимости

CVE-2017-12852

CVSS3: 7.5

ubuntu

больше 8 лет назад

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.

CVE-2017-12852

CVSS3: 4

redhat

больше 8 лет назад

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.

CVE-2017-12852

CVSS3: 7.5

nvd

больше 8 лет назад

The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.

SUSE-SU-2022:3954-1

suse-cvrf

около 3 лет назад

Security update for python-numpy

SUSE-RU-2017:3010-1

suse-cvrf

около 8 лет назад

Initial release of python-numpy for HPC (v1.13.3, gcc)

EPSS

Процентиль: 74%

0.00808

Низкий