Headline
CVE-2023-25399: BUG: Memory leak in function `Py_FindObjects` due to new reference is not decreased (static analyzer report) · Issue #16235 · scipy/scipy
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function.
Comments
rgommers added the defect
A clear bug or issue that prevents SciPy from being installed or used as expected
label
Jun 13, 2022
rgommers added a commit to rgommers/scipy that referenced this issue
Jun 13, 2022
Closes scipygh-16235
Note: also change `Py_XDECREF`s for start/end variables to `Py_DECREF`, because it’s already checked higher up that those variables are not NULL.
Related news
Ubuntu Security Notice 6226-1 - It was discovered that SciPy did not properly manage memory operations during reference counting. An attacker could possibly use this issue to cause a denial of service. A use-after-free was discovered in SciPy when handling reference counts. An attacker could possibly use this to cause a denial of service. This issue only affected Ubuntu 20.04 LTS.
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in `Py_FindObjects()` function.