Buffer Copy without Checking Size of Input in NumPy

🗓️ 08 Feb 2022 00:56:00Reported by GitHub Advisory DatabaseType

Buffer overflow in NumPy array_from_pyobj functio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 95
RedhatCVE	CVE-2021-41496	22 Dec 202119:23	–	redhatcve
Cvelist	CVE-2021-41496	17 Dec 202119:56	–	cvelist
Prion	Buffer overflow	17 Dec 202120:15	–	prion
Tenable Nessus	EulerOS 2.0 SP10 : numpy (EulerOS-SA-2022-1491)	20 Apr 202200:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : numpy (EulerOS-SA-2022-1510)	20 Apr 202200:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.6.0 : numpy (EulerOS-SA-2022-2575)	10 Oct 202200:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : numpy (EulerOS-SA-2022-1334)	21 Mar 202200:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.2.0 : numpy (EulerOS-SA-2022-1684)	22 Jul 202200:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : numpy (EulerOS-SA-2022-1749)	26 May 202200:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-41496	5 Mar 202500:00	–	nessus

Vulners

Node

numpy numpyRange≤1.18.5

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-41496
github	www.github.com/numpy/numpy/issues/19000
oracle	www.oracle.com/security-alerts/cpujul2022.html
github	www.github.com/advisories/GHSA-f7c7-j99h-c22f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Feb 2022 00:00Current

6Medium risk

Vulners AI Score6

CVSS22.1

CVSS35.5

EPSS0.00028

CWE-120