You are here
Home > Preporuke > Sigurnosni propust programskog paketa numpy

Sigurnosni propust programskog paketa numpy

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2014-02-11 22:22:45

Name : numpy
Product : Fedora 20
Version : 1.8.0
Release : 4.fc20
Summary : A fast multidimensional array facility for Python
Description :
NumPy is a general-purpose array-processing package designed to
efficiently manipulate large multi-dimensional arrays of arbitrary
records without sacrificing too much speed for small multi-dimensional
arrays. NumPy is built on the Numeric code base and adds features
introduced by numarray as well as an extended C-API and the ability to
create arrays of arbitrary type.

There are also basic facilities for discrete fourier transform,
basic linear algebra and random number generation. Also included in
this package is a version of f2py that works properly with NumPy.

Update Information:

– Fix CVE-2014-1858, CVE-2014-1859: #1062009, #1062359

* Mon Feb 10 2014 Thomas Spura <> – 1:1.8.0-4
– Fix CVE-2014-1858, CVE-2014-1859: #1062009, #1062359
* Mon Nov 25 2013 Orion Poplawski <> – 1:1.8.0-3
– Ship doc module (bug #1034357)

[ 1 ] Bug #1062009 – CVE-2014-1858 CVE-2014-1859 numpy: f2py insecure temporary file use

This update can be installed with the “yum” update program. Use
su -c ‘yum update numpy’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorTomislav Protega
Cert idNCERT-REF-2014-02-0004-ADV
CveCVE-2014-1858 CVE-2014-1859
ID izvornikaFEDORA-2014-2289
More in Preporuke
Ranjivost programske palketa yaml

Otkrivena je ranjivost prekoračenja spremnika gomile u programskom paketu yaml za Manadriva Business Server 1.0. Ranjivost je mogla biti iskorištena...