VDB

DEBIAN-CVE-2021-34141

DEBIAN-CVE-2021-34141 PUBLISHED CVSS 5.300000190734863 MEDIUM

An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. NOTE: the vendor states that this reported code behavior is "completely harmless."

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products

VendorProductVersions
Debian:12numpy1:1.26.4+ds-1, 1:1.26.3-2, 1:1.26.4+ds-10
Debian:14numpy2.3.3+ds, 2.3.3+ds, 2.3.3+ds
Debian:11numpy*, *, *
Debian:13numpy0, 2.2.4+ds, 2.2.4+ds

Timeline

  • Dec 17, 2021 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›