[SECURITY] Fedora EPEL 5 Update: scipy-0.6.0-7.el5

Fri Nov 1 21:05:56 UTC 2013

--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2013-11879
2013-10-17 17:03:17
--------------------------------------------------------------------------------

Name        : scipy
Product     : Fedora EPEL 5
Version     : 0.6.0
Release     : 7.el5
URL         : http://www.scipy.org
Summary     : Scipy: Scientific Tools for Python
Description :
Scipy is open-source software for mathematics, science, and
engineering. The core library is NumPy which provides convenient and
fast N-dimensional array manipulation. The SciPy library is built to
work with NumPy arrays, and provides many user-friendly and efficient
numerical routines such as routines for numerical integration and
optimization. Together, they run on all popular operating systems, are
quick to install, and are free of charge. NumPy and SciPy are easy to
use, but powerful enough to be depended upon by some of the world's
leading scientists and engineers.

--------------------------------------------------------------------------------
Update Information:

Add patch for CVE-2013-4251: insecure use of /tmp by scipy.weave
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #916690 - CVE-2013-4251 scipy: weave /tmp and current directory issues
        https://bugzilla.redhat.com/show_bug.cgi?id=916690
--------------------------------------------------------------------------------

This update can be installed with the "yum" update programs.  Use
su -c 'yum update scipy' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora EPEL GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------