CVE-2023-29824

CVE	CVE-2023-29824
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-07-06 21:15:00 UTC
Updated	2023-11-07 04:11:00 UTC
Description	DISPUTED A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that this is not a security issue.

Problem Types: CWE-416

Type	Vendor	Product	Version	Update	Edition	Language
Application	Scipy	Scipy	All	All	All	All

Reference	Source	Link	Tags
MAINT: Fix use-after-free bug in Py_FindObjects by AnirudhDagar · Pull Request #15013 · scipy/scipy · GitHub	MISC	github.com
CVE-2023-29824 – SQUARE Group	MISC	www.square16.org
BUG: Potential use-after-free bug in function `Py_FindObjects` · Issue #14713 · scipy/scipy · GitHub	MISC	github.com
BUG: Potential use-after-free bug in function `Py_FindObjects` · Issue #14713 · scipy/scipy · GitHub	MISC	github.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

199543 Ubuntu Security Notification for SciPy Vulnerabilities (USN-6226-1)
242374 Red Hat OpenShift Container Platform 4.14 Security Update (RHSA-2023:5009)
355692 Amazon Linux Security Advisory for scipy : ALAS2-2023-2160
355749 Amazon Linux Security Advisory for scipy : ALAS2023-2023-268
673333 EulerOS Security Update for scipy (EulerOS-SA-2023-3195)
673485 EulerOS Security Update for scipy (EulerOS-SA-2023-3230)
673696 EulerOS Security Update for scipy (EulerOS-SA-2023-2908)
673742 EulerOS Security Update for scipy (EulerOS-SA-2023-2870)
673853 EulerOS Security Update for scipy (EulerOS-SA-2023-3158)
674002 EulerOS Security Update for scipy (EulerOS-SA-2023-2889)
674020 EulerOS Security Update for scipy (EulerOS-SA-2023-2853)
770213 Red Hat OpenShift Container Platform 4.14 Security Update (RHSA-2023:5009)