MEDIUM 5.5 PyPI
Withdrawn: scipy memory leak vulnerability
GHSA-9jx5-6pgf-crrp · CVE-2023-25399 · PYSEC-2023-102
Published · Modified
Description
Withdrawn Advisory
This advisory has been withdrawn because it has been found to not be an issue. Please see the issue here for more information.
Original Description
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function.
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-25399
- WEB https://github.com/scipy/scipy/issues/16235
- WEB https://github.com/scipy/scipy/issues/16235#issuecomment-1625361328
- WEB https://github.com/scipy/scipy/pull/16397
- WEB https://github.com/scipy/scipy/commit/9b6521198c4f31d3f9cb525e581bea8e3e77f0a2
- WEB https://github.com/pypa/advisory-database/tree/main/vulns/scipy/PYSEC-2023-102.yaml
- PACKAGE https://github.com/scipy/scipy
- WEB http://www.square16.org/achievement/cve-2023-25399
Ready to move
Start Securing
Free, no credit card | First findings in minutes