Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -1 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateNULL pointer

Red Hat OpenStack 16.2 Moderate: RHSA-2022:8852-01 Numpy NULL Pointer

An update for numpy is now available for Red Hat OpenStack Platform 16.2.4 (Train) for Red Hat Enterprise Linux (RHEL) 8.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenStack Platform 16.2.4 (numpy) security update Advisory ID: RHSA-2022:8852-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2022:8852 Issue date: 2022-12-07 CVE Names: CVE-2021-41495 ==================================================================== 1. Summary: An update for numpy is now available for Red Hat OpenStack Platform 16.2.4 (Train) for Red Hat Enterprise Linux (RHEL) 8.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 16.2 - ppc64le, x86_64 3. Description: A fast multidimensional array facility for Python Security Fix(es): * NULL pointer dereference in numpy.sort in the PyArray_DescrNew() due to missing return-value validation (CVE-2021-41495) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2035037 - CVE-2021-41495 numpy: NULL pointer dereference in numpy.sort in in the PyArray_DescrNew() due to missing return-valuevalidation 6. Package List: Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-11.el8ost.src.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-41495 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hatsecurity contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY5FpYNzjgjWX9erEAQhgfg//f83LbU6ItAgUp+zoZFPPbzSk47S195bN 43EB3UOSd4Sf+JCtClkeGgzS05ogVF/7aEuQkpUDAMYplJrv6gxBEy1NKbW3vLOI /H/Zh3baeXBA9SwT57kah/iLyao4T1QvuIWQXaJRnmtNGftZWHTsldsiBQpCn+/j JEZx6edutX1I8U2+j4arfd2RqPWG/RnXSEBsuutoTqFz4rLI8igC+lHf9k8EiJe8 N/5h39IUBIveahOj3zV64p4hdatQ3MMjl7cTIgeapnoigSRSPsQmX+5pQ2DPlNlu 5ObBwCsSAmEy2cygPAq2E7/BglaYey3gxUrjPaUSUsX3FmVFaDh+sKzgnr1jS5oq eX+hToVOehvoDktDJs17Drv+H0xvZwYKZueACEk9oY0zWfl4PShxZqEb9Zj/G4ay TAoAc8+hAXE51X+INfpfMVvP5pB8y7Yk40+AWfhfojiTl34FsafG3PM8kGhhodr9 p3HYLVVb4UhGgSTIJ+CCz4jhZrmBMYRu4R+kL4p7itZwDUVEs9eScIdHZgrHV4C9 J9BapgqnjNq7wkrkdJFgfVh9E3lCQsOD1mHNDBcEh2PMeiZQLR294PYqspDfYmqd IAKuP4bz4L28euC0fsHzt6xG+Iya5UqjbkFfrGyqgNo3J0rS9YyTcGsFxtc+bYZi FD+LO1bgUAQ=7igt -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat OpenStack Platform 16.2.4 patch enhances security against a numpy library vulnerability, urging users to update for improved stability and integrity. Red Hat OpenStack,numpy update,security advisory,RHEL updates,NULL pointer fix. . LinuxSecurity.com Team

Calendar 2 Dec 08, 2022 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity issue

Moderate Null Pointer Issue in Red Hat OpenStack Platform 16.1.9 Advisory

An update for numpy is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenStack Platform 16.1.9 (numpy) security update Advisory ID: RHSA-2022:8861-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2022:8861 Issue date: 2022-12-07 CVE Names: CVE-2021-41495 ==================================================================== 1. Summary: An update for numpy is now available for Red Hat OpenStack Platform 16.1.9 (Train) for Red Hat Enterprise Linux (RHEL) 8.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 16.1 - ppc64le, x86_64 3. Description: A fast multidimensional array facility for Python Security Fix(es): * NULL pointer dereference in numpy.sort in the PyArray_DescrNew() due to missing return-value validation (CVE-2021-41495) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2035037 - CVE-2021-41495 numpy: NULL pointer dereference in numpy.sort in in the PyArray_DescrNew() due to missing return-valuevalidation 6. Package List: Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-11.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-11.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-11.el8ost.x86_64.rpm python3-numpy-1.17.0-11.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-11.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-11.el8ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-41495 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBY5FpXdzjgjWX9erEAQjuAw/+J98PzX9ebz5l8WTTGG3bmYmCqjOSjyoz i0HhluPaACP2yC7ZlP8KHE9r/CHkkpwmbd4X4vXfROglNTT1PW7Pn2n5Cbl++XFJ hYstYrnUR6+xOyM/g+IaXbR1MRE6Zc3SHRI0Z0iEGFA1tPsZ2SM1PhAO5bFAr3iP JNubTl0Qi20oB9xRICU9HJl54O4RoV4MtqBUbsXGJ1b6ikOEZ1M3QrSuXiij5T6S oeb+1yUo8BIpByY11rBHucWtq7NuLSqW45DMKkAIBIaWbnq4a/4RtgHDl4EfmqNe fZioM3IU/SS866iv//+Aunt0XjihO+nX3F9kwC9vYoVfQAO0yRJHT7ng4GVzICrU uQEFbMPBznLG7UG9R80jXYy0gP44IEOiz0980A3Khg/4MzSOXDleAF3CqL29RUv0 uQElZrf4waixRHRVns7m83vWXULEoYKegYNertukErUFlbjYCHNXbsvdRjMBDIwn OGNzFiUspgQgDIDIesFGHHtGqbC0S+ZhXLIjJT3xoL3Hb2xv0sW0vZyF6IrjP0UL oauNs+YFaNoiQ7ZMvyKBOKd31lN6x1kNh8gKv2/qzZX/xjfl8N7ZNv0Fvutnt02Z oNFrTMb1z7FFZkglHojw9LOysneVs6MVaf1QXaMXG+1yGtNamKMEFTE1YzU0/iBV mueR1vvOOPE=DHF9 -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A security enhancement for Red Hat OpenStack Platform 16.1.9 tackles a NULL reference vulnerability in numpy.. Red Hat OpenStack,numpy update,security advisory,NULL pointer,RHEL 8.2. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 08, 2022 Important Red Hat
Banner 1 1028x280 1708121660 1771599717
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicecritical

Ubuntu 22.04 LTS USN-5763-1 Critical: NumPy Denial Of Service

Several security issues were fixed in NumPy.. =========================================================================Ubuntu Security Notice USN-5763-1 December 07, 2022 numpy vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Several security issues were fixed in NumPy. Software Description: - numpy: scientific computing package with Python Details: It was discovered that NumPy did not properly manage memory when specifying arrays of large dimensions. If a user were tricked into running malicious Python file, an attacker could cause a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-33430) It was discovered that NumPy did not properly perform string comparison operations under certain circumstances. An attacker could possibly use this issue to cause NumPy to crash, resulting in a denial of service. (CVE-2021-34141) It was discovered that NumPy did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause NumPy to crash, resulting in a denial of service. (CVE-2021-41495, CVE-2021-41496) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.10: python3-numpy 1:1.21.5-1ubuntu22.10.1 Ubuntu 22.04 LTS: python3-numpy 1:1.21.5-1ubuntu22.04.1 Ubuntu 20.04 LTS: python3-numpy 1:1.17.4-5ubuntu3.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5763-1 CVE-2021-33430, CVE-2021-34141, CVE-2021-41495, CVE-2021-41496 Package Information: https://launchpad.net/ubuntu/+source/numpy/1:1.21.5-1ubuntu22.10.1 https://launchpad.net/ubuntu/+source/numpy/1:1.21.5-1ubuntu22.04.1 https://launchpad.net/ubuntu/+source/numpy/1:1.17.4-5ubuntu3.1 . Ubuntu Security AlertUSN-5763-1 outlines significant vulnerabilities within NumPy, impacting various distributions and providing necessary remediation steps.. NumPy Security Issues, Denial Of Service, Ubuntu Updates, Memory Management Errors. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 07, 2022 Critical Ubuntu
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorybuffer overflowmoderate severity

Red Hat OpenStack 16.1 RHSA-2022:0987-01 Moderate: Numpy Buffer Overflow

An update for numpy is now available for Red Hat OpenStack Platform 16.1 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenStack Platform 16.1 (numpy) security update Advisory ID: RHSA-2022:0987-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2022:0987 Issue date: 2022-03-24 CVE Names: CVE-2021-33430 CVE-2021-41496 ==================================================================== 1. Summary: An update for numpy is now available for Red Hat OpenStack Platform 16.1 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 16.1 - ppc64le, x86_64 3. Description: A fast multidimensional array facility for Python Security Fix(es): * buffer overflow in the PyArray_NewFromDescr_int() in ctors.c (CVE-2021-33430) * buffer overflow in the array_from_pyobj() in fortranobject.c (CVE-2021-41496) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2035034 - CVE-2021-33430 numpy: buffer overflow in the PyArray_NewFromDescr_int() in ctors.c 2035040 - CVE-2021-41496 numpy: buffer overflow in thearray_from_pyobj() in fortranobject.c 6. Package List: Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.1: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-33430 https://access.redhat.com/security/cve/CVE-2021-41496 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYjyOidzjgjWX9erEAQjjAw/9GZpxvOiOcfQF8w4Ycg/nQmC/zeY6UMsU 4Jjdd7M5VpI+wCHykrSjdp94Wrm1ND2yu9XQFgv0yQxp/FcoTKDR6Q0H1krRHN5r bZ2tNZ54H941YVL0CibPS7lKEWohMTtPrDVaZO3Htec2a9smHxcb32pSnONhUpGn fAb538TjzpLyExIRJjUzCcZ6n85fha6ZQ7daCmJp96XMpFxvh8xymFzgZjAKJXj0 yGbRFyPg0FuqmZVa8UTkHaczMTu6XP/WU7za+fDXWoAAK6LXR70AOHue3EBsYTcu fsFoewHR2oiTa1ctY9AP1ZJrbIxf6DbpZ+8Wv7eE7VpLg2K+5oDxSD82p5sU6H7u bLkDf0xA3po4eHAsO7cCEDX8Pls7/npz+DuXlznUcUUQTdw6qNOOV44Ih/i5njd6 kmpIo/h7YpNPNb3QzEr5Am0M5Jjcsfnk8M7/uLegp8OA8lSGsml99HuBpdVzOOVF fTkuGtcA34JiPOxEU1/14ce/GNfQlOxRMR/BE86w/2GwapyygI54Nd2WxUtzlTVY 5Gb36Auv59C5x4PW9teAm6ieiis6C3+JPb0FwFAcQY0SNvhaFqBCLobEUyDziIE0 lkXImarpt7YxUVSub7xtRTqwKbSgPVpqd06e9QzF20Vr3TwomaJtJDYhiUjtBtVG nGtBKVYFTa8=h9TO -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . A patch for numpy in Red Hat OpenStack Platform 16.1 resolves moderate-level buffer overflow vulnerabilities.. Red Hat OpenStack,numpy,security update,buffer overflow,Python package. . LinuxSecurity.com Team

Calendar 2 Mar 24, 2022 Red Hat
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorybuffer overflowmoderate severity

Red Hat OpenStack 16.2 RHSA-2022:1000-01 Moderate: numpy Buffer Overflow

An update for numpy is now available for Red Hat OpenStack Platform 16.2 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenStack Platform 16.2 (numpy) security update Advisory ID: RHSA-2022:1000-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2022:1000 Issue date: 2022-03-23 CVE Names: CVE-2021-33430 CVE-2021-41496 ==================================================================== 1. Summary: An update for numpy is now available for Red Hat OpenStack Platform 16.2 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 16.2 - ppc64le, x86_64 3. Description: A fast multidimensional array facility for Python Security Fix(es): * buffer overflow in the PyArray_NewFromDescr_int() in ctors.c (CVE-2021-33430) * buffer overflow in the array_from_pyobj() in fortranobject.c (CVE-2021-41496) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2035034 - CVE-2021-33430 numpy: buffer overflow in the PyArray_NewFromDescr_int() in ctors.c 2035040 - CVE-2021-41496 numpy: buffer overflow in thearray_from_pyobj() in fortranobject.c 6. Package List: Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-8.el8ost.src.rpm ppc64le: numpy-debugsource-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.ppc64le.rpm python3-numpy-f2py-1.17.0-8.el8ost.ppc64le.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm Red Hat OpenStack Platform 16.2: Source: numpy-1.17.0-8.el8ost.src.rpm x86_64: numpy-debugsource-1.17.0-8.el8ost.x86_64.rpm python3-numpy-1.17.0-8.el8ost.x86_64.rpm python3-numpy-debuginfo-1.17.0-8.el8ost.x86_64.rpm python3-numpy-f2py-1.17.0-8.el8ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2021-33430 https://access.redhat.com/security/cve/CVE-2021-41496 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYjvlt9zjgjWX9erEAQiu7g//fng3G9TidtQC5FhDauSMnBTbTMyTkkQT g0F4AnENNbT6gQ5VCj6y1Z/Y68Nqs965jOdNZtHQmlUiUrE3T3tf8XBv9LFp20qB A1fbmjrNv+kgDkPs2/YpMHlKHFG5I1+dnFZjAcuhDHecl0Oq0DOgQmDHf2/jKj6y q1AV7Ft6AzwTFob1fDZh+853h9104E4hfP0HNPnLc+5xkJdtF4DCBtrs156isrNf 8gwCtyW7ZAaVLs7YY9w0BaZ6ELXuKxl6bddeBGqQktwYnS6nYP5St4Zqpv2ruA0Z KoISDh2XOogOJjGA7RSRs8hx+kfCGvwM1JFmIUBabrVpfPpSKhb+FiO3x11F1xLQ g8gR6E0JaR3lb/Ufw56+R+FXZqeHclpIpQBgvIQCLCjRPsdhuECS+5oTxrVjHls6 69gNl+Zi8qFUeQjuYEeIVhvJRsGoZaT1Zp1J1IhpLU+8AYQWGBaHz10tamdAIPsQ ppeoUvEHtEh5SZesJkKdMHNaP4GIVjj0VUO3tao6HIHZehyDurfnWYYUfJZ4fqCN QYlN/dLQa8e0LmZXwl6/zOcLABkeY0tPQXlAdgMtcL9YjmlByk1+fEuFHJpa5DNy wLhV0vY9huW9lUquoDl7hFjk+vQFh6m0zj0PegwtRyO+jaV0Sg9SIhlLf0f/kCML TH3BJWFC3Oo=GknO -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . Red Hat OpenStack Platform 16.2 has been updated to fix moderate security vulnerabilities in numpy, ensuring enhanced system safety and integrity through crucial buffer overflow fixes. Red Hat OpenStack, numpy, security update, buffer overflow. . LinuxSecurity.com Team

Calendar 2 Mar 23, 2022 Red Hat
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryarbitrary code executionpython package

Mageia: 2019-0322 Critical Python-Numpy Update for Remote Code Execution

Updated python-numpy packages fix security vulnerability: An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, as demonstrated by a numpy.load call . MGASA-2019-0322 - Updated python-numpy packages fix security vulnerability Publication date: 14 Nov 2019 URL: https://advisories.mageia.org/MGASA-2019-0322.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-6446 Updated python-numpy packages fix security vulnerability: An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, as demonstrated by a numpy.load call (CVE-2019-6446). References: - https://bugs.mageia.org/show_bug.cgi?id=24356 - https://access.redhat.com/errata/RHSA-2019:3704 - https://www.cve.org/CVERecord?id=CVE-2019-6446 SRPMS: - 7/core/python-numpy-1.16.3-1.mga7 . Recent updates to the python-numpy packages fix a significant security vulnerability that could enable remote code execution. Find out more details here.. python numpy, security patch, remote execution risk, Mageia update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 14, 2019 Critical Mageia
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat Enterprise Linux 8: RHSA-2019-3704-01 Moderate Numpy Update

An update for numpy is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: numpy security update Advisory ID: RHSA-2019:3704-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3704 Issue date: 2019-11-05 CVE Names: CVE-2019-6446 ==================================================================== 1. Summary: An update for numpy is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The numpy packages provide NumPY. NumPY is an extension to the Python programming language, which adds support for large, multi-dimensional arrays and matrices, and a library of mathematical functions that operate on such arrays. Security Fix(es): * numpy: crafted serialized object passed in numpy.load() in pickle python module allows arbitrary code execution (CVE-2019-6446) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the Referencessection. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1667950 - CVE-2019-6446 numpy: crafted serialized object passed in numpy.load() in pickle python module allows arbitrary code execution 1687873 - numpy.test() fails 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: numpy-1.14.3-9.el8.src.rpm aarch64: numpy-debugsource-1.14.3-9.el8.aarch64.rpm python3-numpy-1.14.3-9.el8.aarch64.rpm python3-numpy-debuginfo-1.14.3-9.el8.aarch64.rpm python3-numpy-f2py-1.14.3-9.el8.aarch64.rpm ppc64le: numpy-debugsource-1.14.3-9.el8.ppc64le.rpm python3-numpy-1.14.3-9.el8.ppc64le.rpm python3-numpy-debuginfo-1.14.3-9.el8.ppc64le.rpm python3-numpy-f2py-1.14.3-9.el8.ppc64le.rpm s390x: numpy-debugsource-1.14.3-9.el8.s390x.rpm python3-numpy-1.14.3-9.el8.s390x.rpm python3-numpy-debuginfo-1.14.3-9.el8.s390x.rpm python3-numpy-f2py-1.14.3-9.el8.s390x.rpm x86_64: numpy-debugsource-1.14.3-9.el8.x86_64.rpm python3-numpy-1.14.3-9.el8.x86_64.rpm python3-numpy-debuginfo-1.14.3-9.el8.x86_64.rpm python3-numpy-f2py-1.14.3-9.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-6446 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.1_release_notes/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPGv1 iQIVAwUBXcHzN9zjgjWX9erEAQiN5w/7BB4et15ZUY406surpbc7kqgPl4s6cEc3 IxTahBnux7jdY6Th5Bh3se9qLfhu7qKocf7idtwnJsytB09V20rSD6CK9FovspLr ZI16FEurlNY+5W/OR/BivSQirtmdfFTLim86zX/FYtWmu82ROhbBVf18hFU3yf+U 8hLh04x4UEA8YTvuVMLX3+UG38rF3JSE1DBd8zhFNCuSjZlvvj8c9UZuZp6ZH1PW OLqEJnPcL3iX2filxNHj0NWVlbIo9T1mXz/YXE/FmghXPe0u2jd9leU2fq0aqvSC 1EE7DIHeact1HizZyz19YIBzSQV8f8FCypHVSXWPt+UCO4yYE8Bm7/Z73y1faLcn 1CTHFPcC7rQt0HUWmXvdwXMJBg8YzM0eIX/CU2vMixm2ibOFep5jNRBUnxhdeknh WbMbhgci5NQOMW5ZIy5y+pAfwP2PSHIU+0rvIJ1hHk//yzfdUFI/r3gSFCO7lvE0 FYWBsRns1HeGjzfUz0QWqkSViGOD2TwVlByYJfKbtqT7CWn6Gyvvy1hZXRw5P9OT BQdGnVzpn5Keup8Bf4JCmMvOQ50oP7+fpLyBwgeTqXEeW44FGqBBqDltMmVNDRzl 0PkJLlDFybr6WSKOFMrFX+12VN9zqYfepTndimdfV86SiyXi0sR8Jz9Ol/oFC7yw TNcCyvwxZlg=C+/L -----END PGP SIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent numpy security patch from Red Hat tackles critical vulnerabilities that could lead to unauthorized code execution on Enterprise Linux 8.. numpy security update, Red Hat advisory, enterprise linux security. . LinuxSecurity.com Team

Calendar 2 Nov 05, 2019 Red Hat
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updateFedora

Fedora 30: FEDORA-2019-1dfe95a864 Critical: Numpy Code Execution Risk

1.16.3, fix for CVE-2019-6446. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-1dfe95a864 2019-04-27 21:22:10.074897 --------------------------------------------------------------------------------Name : numpy Product : Fedora 30 Version : 1.16.3 Release : 1.fc30 URL : https://numpy.org/ Summary : A fast multidimensional array facility for Python Description : NumPy is a general-purpose array-processing package designed to efficiently manipulate large multi-dimensional arrays of arbitrary records without sacrificing too much speed for small multi-dimensional arrays. NumPy is built on the Numeric code base and adds features introduced by numarray as well as an extended C-API and the ability to create arrays of arbitrary type. There are also basic facilities for discrete fourier transform, basic linear algebra and random number generation. Also included in this package is a version of f2py that works properly with NumPy. --------------------------------------------------------------------------------Update Information: 1.16.3, fix for CVE-2019-6446 --------------------------------------------------------------------------------ChangeLog: * Mon Apr 22 2019 Gwyn Ciesla - 1:1.16.3-1 - 1.16.3. --------------------------------------------------------------------------------References: [ 1 ] Bug #1667955 - CVE-2019-6446 numpy: crafted serialized object passed in numpy.load() in pickle python module allows arbitrary code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1667955 [ 2 ] Bug #1701803 - numpy-1.16.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1701803 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-1dfe95a864' at the command line. For more information, refer to the dnfdocumentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . An urgent patch for scipy on Fedora 30 tackles CVE-2020-1234 to stop potential code injection vulnerabilities.. Fedora Update,numpy package,security notification,arbitrary code execution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 27, 2019 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here