Описание
The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Enterprise 1 | python27-numpy | Will not fix | ||
| Red Hat Enterprise Linux 6 | numpy | Will not fix | ||
| Red Hat Enterprise Linux 7 | numpy | Will not fix | ||
| Red Hat Enterprise MRG 1 | numpy | Will not fix | ||
| Red Hat OpenStack Platform 11 (Ocata) | numpy | Will not fix | ||
| Red Hat Software Collections | python27-numpy | Will not fix | ||
| Red Hat Software Collections | rh-python34-numpy | Will not fix | ||
| Red Hat Software Collections | rh-python35-numpy | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1483686numpy: Missing input validation on empty list or ndarray in numpy.pad function
4 Medium
CVSS3
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 8 лет назад
The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.
CVSS3: 7.5
nvd
больше 8 лет назад
The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.
CVSS3: 7.5
debian
больше 8 лет назад
The numpy.pad function in Numpy 1.13.1 and older versions is missing i ...
4 Medium
CVSS3