10 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-1858
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - init.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file. CVE-2014-1858 Note that Nessus...
RHEL 7 : numpy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code...
RHEL 6 : numpy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code...
Mageia: Security Advisory (MGASA-2014-0089)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-1858
CVE-2014-1858 affects NumPy’s f2py (init .py) prior to 1.8.1. It allows local users to write to arbitrary files via a symlink attack on a temporary file, potentially enabling file overwrite on the system. This is documented in the CVE record and corroborated by multiple advisories and a GHSA entr...
Mandriva Linux Security Advisory : python-numpy (MDVSA-2015:077)
Updated python-numpy packages fix security vulnerabilities : f2py insecurely used a temporary file. A local attacker could use this flaw to perform a symbolic link attack to modify an arbitrary file accessible to the user running f2py CVE-2014-1858, CVE-2014-1859. %NASLMINLEVEL 70300 C Tenable...
Fedora Update for numpy FEDORA-2014-2387
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : numpy-1.7.2-8.fc19 (2014-2387)
Fix CVE-2014-1858, CVE-2014-1859: 1062009, 1062359 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Updated python-numpy packages fix security vulnerabilities
f2py insecurely used a temporary file. A local attacker could use this flaw to perform a symbolic link attack to modify an arbitrary file accessible to the user running f2py CVE-2014-1858, CVE-2014-1859...
Fedora 20 : numpy-1.8.0-4.fc20 (2014-2289)
Fix CVE-2014-1858, CVE-2014-1859: 1062009, 1062359 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...