Unity Linux 20.1060e / 20.1070e Security Update: openblas (UTSA-2026-016623)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016623 advisory. An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version...

Astra Linux - уязвимость в lapack

A out-of-bounds read flaw was discovered in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack, from version 3.10.0 onward. This flaw was also present in OpenBLAS prior to version 0.3.18. Specifically, specially crafted inputs passed to these functions could cause applications using lapac...

MiracleLinux 8 : openblas-0.3.15-4.el8 (AXSA:2022-4153:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4153:02 advisory. lapack: Out-of-bounds read in larrv CVE-2021-4048 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Not...

TencentOS Server 3: openblas (TSSA-2022:0238)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0238 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

ROS-20250424-11

Vulnerability of CLARRV, DLARRV, SLARRV and ZLARRV functions of the library for numerical calculations of linear algebra LAPACK, linear algebra library OpenBLAS is related to reading beyond buffer limits. LAPACK, OpenBLAS linear algebra library is related to reading outside the allowed boundaries...

openblas bug fix and enhancement update

An update is available for openblas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.5...

Linux Distros Unpatched Vulnerability : CVE-2021-4048

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before versi...

Advisory ROSA-SA-2025-2713

Software: openblas 2000.3.15 OS: ROSA Virtualization 3.0 packageevrstring: openblas-2000.3.15 CVE-ID: CVE-2021-4048 BDU-ID: 2021-05061 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Microsoft Visio vector graphics, diagram and flowchart editor is related to memory usage after memory has be...

Amazon Linux 2022 : blas, blas64, blas64_ (ALAS2022-2022-029)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-029 advisory. An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack and OpenBLAS. A specially crafted input passed to these functions could cause an application using lapa...

RHSA-2022:7639 Red Hat Security Advisory: openblas security update

Bulletin has no description...

Fedora: Security Advisory for jblas (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

BIT-OPENBLAS-2021-4048

An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or possibly disclose...

CentOS 9 : openblas-0.3.15-3.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the openblas-0.3.15-3.el9 build changelog. - An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in...

Amazon Linux 2 : openblas (ALASR4-2023-001)

The version of openblas installed on the remote host is prior to 0.3.9-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2R4-2023-001 advisory. An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack and OpenBLAS. A specially...

python39:3.9 and python39-devel:3.9 security update

modwsgi 4.7.1-7 - Bump release for rebuild Resolves: rhbz2213595 4.7.1-6 - Remove rpath Resolves: rhbz2213837 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055 1.19.4-2 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz187743...

Medium: openblas

Issue Overview: An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack and OpenBLAS. A specially crafted input passed to these functions could cause an application using lapack to crash or possibly disclose portions of its memory. CVE-2021-4048 Affected...

Advisory ROSA-SA-2023-2200

Software: openblas 0.3.3 OS: ROSA Virtualization 2.1 packageevrstring: openblas-0.3.3-5.rv3.1.src.rpm CVE-ID: CVE-2021-4048 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: An out-of-bounds read vulnerability was discovered in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack before version...

SUSE CVE-2021-4048

An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or possibly disclose...

Huawei EulerOS: Security Advisory for lapack (EulerOS-SA-2023-1264)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.2 : lapack (EulerOS-SA-2023-1264)

According to the versions of the lapack package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also...