Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Null Pointer Dereference vulnerability exists in numpy.sort in NumPy < and 1.19 in the PyArray_DescrNew function due to missing return-value validation, which allows attackers to conduct DoS attacks by repetitively creating sort arrays. NOTE: While correct that validation is missing, an error can only occur due to an exhaustion of memory. If the user can exhaust memory, they are already privileged. Further, it should be practically impossible to construct an attack which can target the memory exhaustion to occur at exactly this place
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NumPy 代码问题漏洞
Vulnerability Description
NumPy是一个Python科学计算包。该产品支持大量的维度数组与矩阵计算,同时针对数据运算提供大量的数学函数库。 NumPy 1.19存在代码问题漏洞,该漏洞源于。numpy存在空指针解引用漏洞。在软件中的PyArray_DescrNew函数中,由于缺少返回值验证,导致了空指针解引用漏洞、这允许攻击者可利用该漏洞通过重复创建排序数组来进行DoS攻击。
CVSS Information
N/A
Vulnerability Type
N/A