Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2013-4251

created 1 month ago

The scipy.weave component in SciPy before 0.12.1 creates insecure temporary …

The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.

References

https://security-tracker.debian.org/tracker/CVE-2013-4251 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4251 x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120696.… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119759.h… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119771.h… x_refsource_MISC
http://www.securityfocus.com/bid/63008 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/88052 x_refsource_MISC
https://github.com/scipy/scipy/commit/bd296e0336420b840fcd2faabb97084fd252a973 x_refsource_MISC
http://www.securityfocus.com/bid/63008 x_refsource_MISC x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/88052 x_refsource_MISC x_transferred
https://github.com/scipy/scipy/commit/bd296e0336420b840fcd2faabb97084fd252a973 x_refsource_MISC x_transferred
https://security-tracker.debian.org/tracker/CVE-2013-4251 x_refsource_MISC x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC x_transferred
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC x_transferred
https://access.redhat.com/security/cve/cve-2013-4251 x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120696.… x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119759.h… x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119771.h… x_refsource_MISC x_transferred
https://security-tracker.debian.org/tracker/CVE-2013-4251 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2013-4251 x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120696.… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119759.h… x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119771.h… x_refsource_MISC
http://www.securityfocus.com/bid/63008 x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/88052 x_refsource_MISC
https://github.com/scipy/scipy/commit/bd296e0336420b840fcd2faabb97084fd252a973 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2013-4251 x_refsource_MISC x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC x_transferred
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2013-4251 x_refsource_MISC x_transferred
https://access.redhat.com/security/cve/cve-2013-4251 x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120696.… x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119759.h… x_refsource_MISC x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119771.h… x_refsource_MISC x_transferred
http://www.securityfocus.com/bid/63008 x_refsource_MISC x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/88052 x_refsource_MISC x_transferred
https://github.com/scipy/scipy/commit/bd296e0336420b840fcd2faabb97084fd252a973 x_refsource_MISC x_transferred

Affected products

SciPy

==before 0.12.1

Matching in nixpkgs

pkgs.python312Packages.scipy

SciPy (pronounced 'Sigh Pie') is open-source software for mathematics, science, and engineering

nixos-25.11 1.16.3
- nixos-25.11-small 1.16.3
- nixpkgs-25.11-darwin 1.16.3

pkgs.python313Packages.scipy

SciPy (pronounced 'Sigh Pie') is open-source software for mathematics, science, and engineering

nixos-unstable 1.16.3
- nixpkgs-unstable 1.16.3
- nixos-unstable-small 1.16.3
nixos-25.11 1.16.3
- nixos-25.11-small 1.16.3
- nixpkgs-25.11-darwin 1.16.3

pkgs.python314Packages.scipy

SciPy (pronounced 'Sigh Pie') is open-source software for mathematics, science, and engineering

nixos-unstable 1.16.3
- nixpkgs-unstable 1.16.3
- nixos-unstable-small 1.16.3

pkgs.python312Packages.numba-scipy

Extends Numba to make it aware of SciPy

nixos-25.11 0.4.0
- nixos-25.11-small 0.4.0
- nixpkgs-25.11-darwin 0.4.0

pkgs.python312Packages.scipy-stubs

Typing Stubs for SciPy

nixos-25.11 1.16.3.0
- nixos-25.11-small 1.16.3.0
- nixpkgs-25.11-darwin 1.16.3.0

pkgs.python313Packages.numba-scipy

Extends Numba to make it aware of SciPy

nixos-unstable 0.4.0
- nixpkgs-unstable 0.4.0
- nixos-unstable-small 0.4.0
nixos-25.11 0.4.0
- nixos-25.11-small 0.4.0
- nixpkgs-25.11-darwin 0.4.0

pkgs.python313Packages.scipy-stubs

Typing Stubs for SciPy

nixos-unstable 1.16.3.0
- nixpkgs-unstable 1.16.3.0
- nixos-unstable-small 1.16.3.0
nixos-25.11 1.16.3.0
- nixos-25.11-small 1.16.3.0
- nixpkgs-25.11-darwin 1.16.3.0

pkgs.python314Packages.numba-scipy

Extends Numba to make it aware of SciPy

nixos-unstable 0.4.0
- nixpkgs-unstable 0.4.0
- nixos-unstable-small 0.4.0

pkgs.python314Packages.scipy-stubs

Typing Stubs for SciPy

nixos-unstable 1.16.3.0
- nixpkgs-unstable 1.16.3.0
- nixos-unstable-small 1.16.3.0

Package maintainers

@Etjean Etienne Jean <et.jean@outlook.fr>
@doronbehar Doron Behar <me@doronbehar.com>
@jolars Johan Larsson <johan@jolars.co>