pysec - pysec-2021-856

pysec-2021-856

Vulnerability from pysec

Published

2021-12-17 20:15

Modified

2021-12-22 21:28

Details

Impacted products

Name	purl
numpy	pkg:pypi/numpy

Aliases

JSON

To clipboard

{
   affected: [
      {
         package: {
            ecosystem: "PyPI",
            name: "numpy",
            purl: "pkg:pypi/numpy",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "0",
                  },
                  {
                     fixed: "1.19.1",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
         versions: [
            "0.9.6",
            "0.9.8",
            "1.0",
            "1.0.3",
            "1.0.4",
            "1.0b1",
            "1.0b4",
            "1.0b5",
            "1.0rc1",
            "1.0rc2",
            "1.0rc3",
            "1.1.1",
            "1.10.0",
            "1.10.1",
            "1.10.2",
            "1.10.3",
            "1.10.4",
            "1.11.0",
            "1.11.1",
            "1.11.2",
            "1.11.3",
            "1.12.0",
            "1.12.1",
            "1.13.0",
            "1.13.0rc1",
            "1.13.0rc2",
            "1.13.1",
            "1.13.3",
            "1.14.0",
            "1.14.0rc1",
            "1.14.1",
            "1.14.2",
            "1.14.3",
            "1.14.4",
            "1.14.5",
            "1.14.6",
            "1.15.0",
            "1.15.0rc1",
            "1.15.0rc2",
            "1.15.1",
            "1.15.2",
            "1.15.3",
            "1.15.4",
            "1.16.0",
            "1.16.0rc1",
            "1.16.0rc2",
            "1.16.1",
            "1.16.2",
            "1.16.3",
            "1.16.4",
            "1.16.5",
            "1.16.6",
            "1.17.0",
            "1.17.0rc1",
            "1.17.0rc2",
            "1.17.1",
            "1.17.2",
            "1.17.3",
            "1.17.4",
            "1.17.5",
            "1.18.0",
            "1.18.0rc1",
            "1.18.1",
            "1.18.2",
            "1.18.3",
            "1.18.4",
            "1.18.5",
            "1.19.0",
            "1.19.0rc1",
            "1.19.0rc2",
            "1.2.0",
            "1.2.1",
            "1.3.0",
            "1.4.0",
            "1.4.1",
            "1.5.0",
            "1.5.1",
            "1.6.0",
            "1.6.1",
            "1.6.2",
            "1.7.0",
            "1.7.1",
            "1.7.2",
            "1.8.0",
            "1.8.1",
            "1.8.2",
            "1.9.0",
            "1.9.1",
            "1.9.2",
            "1.9.3",
         ],
      },
   ],
   aliases: [
      "CVE-2021-41495",
      "GHSA-5545-2q6w-2gh6",
   ],
   details: "Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays.",
   id: "PYSEC-2021-856",
   modified: "2021-12-22T21:28:25.939120Z",
   published: "2021-12-17T20:15:00Z",
   references: [
      {
         type: "REPORT",
         url: "https://github.com/numpy/numpy/issues/19038",
      },
      {
         type: "ADVISORY",
         url: "https://github.com/advisories/GHSA-5545-2q6w-2gh6",
      },
   ],
}

cve-2021-41495

Vulnerability from cvelistv5

Published

2021-12-17 19:25

Modified

2024-08-04 03:15

Severity ?

Summary

Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is missing, an error can only occur due to an exhaustion of memory. If the user can exhaust memory, they are already privileged. Further, it should be practically impossible to construct an attack which can target the memory exhaustion to occur at exactly this place

References

▼	URL	Tags
	https://github.com/numpy/numpy/issues/19038	x_refsource_MISC
	https://www.oracle.com/security-alerts/cpujul2022.html

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T03:15:28.284Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://github.com/numpy/numpy/issues/19038",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.oracle.com/security-alerts/cpujul2022.html",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is missing, an error can only occur due to an exhaustion of memory. If the user can exhaust memory, they are already privileged. Further, it should be practically impossible to construct an attack which can target the memory exhaustion to occur at exactly this place",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-02-07T19:08:41",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://github.com/numpy/numpy/issues/19038",
            },
            {
               url: "https://www.oracle.com/security-alerts/cpujul2022.html",
            },
         ],
         tags: [
            "disputed",
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2021-41495",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "** DISPUTED ** Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is missing, an error can only occur due to an exhaustion of memory. If the user can exhaust memory, they are already privileged. Further, it should be practically impossible to construct an attack which can target the memory exhaustion to occur at exactly this place.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://github.com/numpy/numpy/issues/19038",
                     refsource: "MISC",
                     url: "https://github.com/numpy/numpy/issues/19038",
                  },
                  {
                     url: "https://www.oracle.com/security-alerts/cpujul2022.html",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2021-41495",
      datePublished: "2021-12-17T19:25:19",
      dateReserved: "2021-09-20T00:00:00",
      dateUpdated: "2024-08-04T03:15:28.284Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

ghsa-5545-2q6w-2gh6

Vulnerability from github

Published

2022-02-08 00:00

Modified

2022-08-10 22:18

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

NumPy NULL Pointer Dereference

Details

Show details on source website

JSON

To clipboard

{
   affected: [
      {
         database_specific: {
            last_known_affected_version_range: "<= 1.18.5",
         },
         package: {
            ecosystem: "PyPI",
            name: "numpy",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "0",
                  },
                  {
                     fixed: "1.19",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
   ],
   aliases: [
      "CVE-2021-41495",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-476",
      ],
      github_reviewed: true,
      github_reviewed_at: "2022-06-21T20:10:22Z",
      nvd_published_at: "2021-12-17T20:15:00Z",
      severity: "HIGH",
   },
   details: "Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays.",
   id: "GHSA-5545-2q6w-2gh6",
   modified: "2022-08-10T22:18:31Z",
   published: "2022-02-08T00:00:56Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2021-41495",
      },
      {
         type: "WEB",
         url: "https://github.com/numpy/numpy/issues/19038",
      },
      {
         type: "ADVISORY",
         url: "https://github.com/advisories/GHSA-5545-2q6w-2gh6",
      },
      {
         type: "PACKAGE",
         url: "https://github.com/numpy/numpy",
      },
      {
         type: "WEB",
         url: "https://github.com/pypa/advisory-database/tree/main/vulns/numpy/PYSEC-2021-856.yaml",
      },
      {
         type: "WEB",
         url: "https://www.oracle.com/security-alerts/cpujul2022.html",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
         type: "CVSS_V3",
      },
   ],
   summary: "NumPy NULL Pointer Dereference",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

pysec-2021-856

Vulnerability from pysec

cve-2021-41495

Vulnerability from cvelistv5

ghsa-5545-2q6w-2gh6

Vulnerability from github

Tags

Sightings

Nomenclature