(1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) f2py/f2py2e.py, and (4) lib/tests/test_io.py in NumPy prior to 1.8.1 allow local users to write to arbitrary files via a symlink attack on a temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
numpy numpy |
||
numpy numpy 1.8.1 |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 6.0 |
||
fedoraproject fedora 19 |
||
fedoraproject fedora 20 |