pyfftw@0.6.0 vulnerabilities

A pythonic wrapper around FFTW, the FFT library, presenting a unified interface for all the supported transforms.

  • latest version

    0.15.0

  • latest non vulnerable version

  • first published

    12 years ago

  • latest version published

    1 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the pyfftw package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Race Condition

    pyFFTW is an A pythonic wrapper around FFTW, the FFT library, presenting a unified interface for all the supported transforms.

    Affected versions of this package are vulnerable to Race Condition due to improper synchronization when accessing shared resources. This can lead to memory corruption or unexpected behavior when used in multithreaded environments. The vulnerability arises from unsynchronized access to FFTW plan destruction and shared cache keys. An attacker could exploit this by inducing concurrent operations, potentially causing application crashes or arbitrary code execution.

    How to fix Race Condition?

    Upgrade pyFFTW to version 0.14.0 or higher.

    [,0.14.0)