Mpmath could be made to crash if it opened a specially crafted file.. ========================================================================== Ubuntu Security Notice USN-7160-1 December 15, 2024 mpmath vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Mpmath could be made to crash if it opened a specially crafted file. Software Description: - mpmath: library for arbitrary-precision floating-point arithmetic Details: It was discovered Mpmath incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Mpmath to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS python3-mpmath 1.1.0-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 18.04 LTS python-mpmath 1.0.0-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-mpmath 1.0.0-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS python-mpmath 0.19-3ubuntu0.1~esm1 Available with Ubuntu Pro python3-mpmath 0.19-3ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7160-1 CVE-2021-29063 . Numpy release mitigatessevere vulnerability linked to malicious datasets. Safeguard your environment by applying the newest update.. mpmath update, Ubuntu advisory, denial of service fix, security patch. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.