Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-4048

🗓️ 08 Dec 2021 21:24:42Reported by redhatType 
cve
 cve🔗 web.nvd.nist.gov👁 292 Views

An out-of-bounds read flaw in CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
30 Jan 202414:39
ibm
Tenable Nessus		Amazon Linux 2022 : blas, blas64, blas64_ (ALAS2022-2022-029)
11 Dec 202400:00
nessus
Tenable Nessus		Amazon Linux 2022 : blas, blas64, blas64_ (ALAS2022-2022-173)
5 Nov 202200:00
nessus
Tenable Nessus		Amazon Linux 2 : openblas (ALASR4-2023-001)
23 Jan 202400:00
nessus
Tenable Nessus		AlmaLinux 8 : openblas (ALSA-2022:7639)
12 Nov 202200:00
nessus
Tenable Nessus		CentOS 8 : openblas (CESA-2022:7639)
9 Nov 202200:00
nessus
Tenable Nessus		CentOS 9 : openblas-0.3.15-3.el9
29 Feb 202400:00
nessus
Tenable Nessus		EulerOS 2.0 SP5 : lapack (EulerOS-SA-2022-1272)
1 Mar 202200:00
nessus
Tenable Nessus		EulerOS 2.0 SP9 : lapack (EulerOS-SA-2022-1299)
2 Mar 202200:00
nessus
Tenable Nessus		EulerOS 2.0 SP9 : openblas (EulerOS-SA-2022-1300)
2 Mar 202200:00
nessus
Rows per page
NVD
Vulners
Node
lapack_projectlapackRange3.10.0
Node
openblas_projectopenblasRange<0.3.18
Node
julialangjuliaRange1.6.3
OR
julialangjuliaMatch1.7.0beta1
OR
julialangjuliaMatch1.7.0beta2
OR
julialangjuliaMatch1.7.0beta3
OR
julialangjuliaMatch1.7.0beta4
OR
julialangjuliaMatch1.7.0rc1
Node
redhatceph_storageMatch2.0
OR
redhatceph_storageMatch3.0
OR
redhatceph_storageMatch4.0
OR
redhatceph_storageMatch5.0
OR
redhatopenshift_container_storageMatch4.0
OR
redhatopenshift_data_foundationMatch4.0
OR
redhatenterprise_linuxMatch8.0
Node
fedoraprojectfedoraMatch34
OR
fedoraprojectfedoraMatch35
[
  {
    "product": "lapack",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "lapack through version 3.10.0"
      }
    ]
  }
]
SourceLink
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6QFEVOCUG2UXMVMFMTU4ONJVDEHY2LW2/
githubwww.github.com/Reference-LAPACK/lapack/pull/625
githubwww.github.com/JuliaLang/julia/issues/42415
githubwww.github.com/xianyi/OpenBLAS/commit/337b65133df174796794871b3988cd03426e6d41
githubwww.github.com/xianyi/OpenBLAS/commit/2be5ee3cca97a597f2ee2118808a2d5eacea050c
githubwww.github.com/Reference-LAPACK/lapack/commit/38f3eeee3108b18158409ca2a100e6fe03754781
githubwww.github.com/xianyi/OpenBLAS/commit/ddb0ff5353637bb5f5ad060c9620e334c143e3d7
githubwww.github.com/xianyi/OpenBLAS/commit/fe497efa0510466fd93578aaf9da1ad8ed4edbe7
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DROZM4M2QRKSD6FBO4BHSV2QMIRJQPHT/

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:36Current
9.1High risk
Vulners AI Score9.1
CVSS 26.4
CVSS 3.19.1
EPSS0.00364
CWE-125
cve-2021-4048lapackopenblasout-of-bounds readmemory disclosurenvd
292