PYSEC-2021-854

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/numpy/PYSEC-2021-854.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2021-854
Aliases
Published
2021-12-17T19:15:00Z
Modified
2023-11-01T04:55:34.861336Z
Summary
[none]
Details

A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArrayNewFromDescrint function of ctors.c when specifying arrays of large dimensions (over 32) from Python code, which could let a malicious user cause a Denial of Service.

References

Affected packages

PyPI / numpy

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
1.9.0
Fixed
1.10.0

Affected versions

1.*

1.9.0
1.9.1
1.9.2
1.9.3