CVE-2021-4048

Опубликовано: 08 дек. 2021

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 6.4

CVSS3: 9.1

Описание

An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or possibly disclose portions of its memory.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	3.10.0-2ubuntu1
esm-infra/bionic	needed
esm-infra/focal	needed
esm-infra/xenial	not-affected	code not present
focal	ignored	end of standard support, was needed
hirsute	ignored	end of life
impish	ignored	end of life
jammy	not-affected	3.10.0-2ubuntu1
kinetic	not-affected	3.10.0-2ubuntu1

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	0.3.18+ds-2
esm-apps/bionic	needed
esm-apps/focal	needed
esm-apps/jammy	not-affected	0.3.18+ds-2
esm-apps/noble	not-affected	0.3.18+ds-2
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	needs-triage
focal	ignored	end of standard support, was needed
hirsute	ignored	end of life

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2021-4048

EPSS

Процентиль: 47%

0.0024

Низкий

6.4 Medium

CVSS2

9.1 Critical

CVSS3

Связанные уязвимости

CVE-2021-4048

CVSS3: 5.9

redhat

больше 3 лет назад

CVE-2021-4048

CVSS3: 9.1

nvd

больше 3 лет назад

CVE-2021-4048

CVSS3: 9.1

msrc

больше 3 лет назад

Описание отсутствует

CVE-2021-4048

CVSS3: 9.1

debian

больше 3 лет назад

An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, an ...

openSUSE-SU-2022:0915-1

suse-cvrf

около 3 лет назад

Security update for lapack

EPSS

Процентиль: 47%

0.0024

Низкий

6.4 Medium

CVSS2

9.1 Critical

CVSS3

CVE-2021-4048

Описание

Пакет lapack

Пакет openblas

Ссылки на источники

Связанные уязвимости