Snape3058

**Name of the Vulnerable Software and Affected Versions** SciPy versions prior to 1.8.0 **Description** A use-after-free issue was discovered in the `Py FindObjects()` function. The vendor and discoverer indicate that this is not a security issue. The issue is related to the use of memory after it has been freed, which could potentially allow a remote attacker to impact the confidentiality, integrity, and availability of the system. **Recommendations** For SciPy versions prior to 1.8.0, update to version 1.8.0 or later to resolve the issue. As a temporary workaround, consider disabling the `Py FindObjects()` function until a patch is available. However, since the vendor and discoverer indicate that this is not a security issue, the primary recommendation is to update to the latest version.

**Name of the Vulnerable Software and Affected Versions** scipy (affected versions not specified) **Description** A refcounting issue which leads to potential memory leak was discovered in the `Py FindObjects()` function. This issue may allow an attacker to cause a denial of service. Note that this is disputed as a bug and not a vulnerability, and SciPy is not designed to be exposed to untrusted users or data directly. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.