Описание
(1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) f2py/f2py2e.py, and (4) lib/tests/test_io.py in NumPy before 1.8.1 allow local users to write to arbitrary files via a symlink attack on a temporary file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1:1.8.1~rc1-1 |
| cosmic | not-affected | 1:1.8.1~rc1-1 |
| devel | not-affected | 1:1.8.1~rc1-1 |
| disco | not-affected | 1:1.8.1~rc1-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| esm-infra/bionic | not-affected | 1:1.8.1~rc1-1 |
| esm-infra/xenial | not-affected | 1:1.8.1~rc1-1 |
| lucid | ignored | end of life |
| precise | ignored | end of life |
Показывать по
Ссылки на источники
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
(1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) f2py/f2py2e.py, and (4) lib/tests/test_io.py in NumPy before 1.8.1 allow local users to write to arbitrary files via a symlink attack on a temporary file.
(1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) f2py/f2py2e.py, and (4) lib/tests/test_io.py in NumPy before 1.8.1 allow local users to write to arbitrary files via a symlink attack on a temporary file.
1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) ...
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3