Bug 30226 - python-numpy new security issues CVE-2021-34141 and CVE-2021-41495
Summary: python-numpy new security issues CVE-2021-34141 and CVE-2021-41495
Status: RESOLVED OLD
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 8
Hardware: All Linux
Priority: Normal major
Target Milestone: ---
Assignee: Python Stack Maintainers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-03-31 21:24 CEST by David Walser
Modified: 2024-01-12 09:46 CET (History)
2 users (show)

See Also:
Source RPM: python-numpy-1.19.4-1.1.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2022-03-31 21:24:12 CEST 
SUSE has issued an advisory today (March 31):
https://lists.suse.com/pipermail/sle-security-updates/2022-March/010612.html

Mageia 8 is also affected.
David Walser 2022-03-31 21:24:31 CEST

Whiteboard: (none) => MGA8TOO

Comment 2 David Walser 2022-12-07 18:22:37 CET 
Ubuntu has issued an advisory for this today (December 7):
https://ubuntu.com/security/notices/USN-5763-1

It also fixes CVE-2021-34141, which is fixed upstream in 1.22.0, so only Mageia 8 is affected.

Severity: normal => major
Summary: python-numpy new security issue CVE-2021-41495 => python-numpy new security issues CVE-2021-34141 and CVE-2021-41495

Comment 3 papoteur 2023-05-13 08:39:52 CEST 
Python-numpy 1.24.3 has been updated in cauldron.

Version: Cauldron => 8
Whiteboard: MGA8TOO => (none)
CC: (none) => yves.brungard_mageia
Source RPM: python-numpy-1.22.0-4.mga9.src.rpm => python3-numpy-1.19.4-1.1.mga8.x86_6

David Walser 2023-05-13 16:29:15 CEST

Source RPM: python3-numpy-1.19.4-1.1.mga8.x86_6 => python-numpy-1.19.4-1.1.mga8.src.rpm

Comment 4 Nicolas Salguero 2024-01-12 09:46:35 CET 
Mageia 8 EOL

CC: (none) => nicolas.salguero
Resolution: (none) => OLD
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.