VDB
DEBIAN-CVE-2021-34141
DEBIAN-CVE-2021-34141
PUBLISHED
CVSS 5.300000190734863 MEDIUM
An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. NOTE: the vendor states that this reported code behavior is "completely harmless."
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | numpy | 1:1.26.4+ds-1, 1:1.26.3-2, 1:1.26.4+ds-10 |
| Debian:14 | numpy | 2.3.3+ds, 2.3.3+ds, 2.3.3+ds |
| Debian:11 | numpy | *, *, * |
| Debian:13 | numpy | 0, 2.2.4+ds, 2.2.4+ds |
Timeline
- Dec 17, 2021 CVE Published
- Apr 28, 2026 CVE Updated