1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.DIST

  • Bug#1109691: python3-numpy: suspicious files found by chkrootkit

    From =?utf-8?q?Martin-=C3=89ric_Racine?=@21:1/5 to All on Tue Jul 22 07:40:01 2025
    Package: python3-numpy
    Version: 1:2.2.4+ds-1
    Severity: normal
    X-Debbugs-Cc: [email protected]

    WARNING: The following suspicious files and directories were found: /usr/lib/python3/dist-packages/numpy/f2py/tests/src/assumed_shape/.f2py_f2cmap [From Debian package: python3-numpy]
    /usr/lib/python3/dist-packages/numpy/f2py/tests/src/f2cmap/.f2py_f2cmap [From Debian package: python3-numpy]

    i.e. dot-files are suspicious.

    -- System Information:
    Debian Release: 13.0
    APT prefers testing-security
    APT policy: (500, 'testing-security'), (500, 'testing-debug'), (500, 'testing')
    Architecture: amd64 (x86_64)

    Kernel: Linux 6.12.35+deb13-amd64 (SMP w/8 CPU threads; PREEMPT)
    Locale: LANG=fi_FI.UTF-8, LC_CTYPE=fi_FI.UTF-8 (charmap=UTF-8), LANGUAGE=fi:en Shell: /bin/sh linked to /usr/bin/dash
    Init: systemd (via /run/systemd/system)
    LSM: AppArmor: enabled

    Versions of packages python3-numpy depends on:
    ii dpkg 1.22.21
    ii libblas3 [libblas.so.3] 3.12.1-2
    ii libc6 2.41-10
    ii libgcc-s1 14.2.0-19
    ii liblapack3 [liblapack.so.3] 3.12.1-2
    ii libstdc++6 14.2.0-19
    ii python3 3.13.5-1
    ii python3-numpy-dev 1:2.2.4+ds-1

    python3-numpy recommends no packages.

    Versions of packages python3-numpy suggests:
    pn gcc <none>
    pn gfortran <none>
    pn python-numpy-doc <none>
    pn python3-dev <none>
    pn python3-pytest <none>

    -- no debconf information

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Timo =?utf-8?Q?R=C3=B6hling?=@21:1/5 to All on Fri Jul 25 23:30:01 2025
    Control: notfound 1109691 1:2.2.4+ds-1
    Control: close 1109691


    Hi,

    WARNING: The following suspicious files and directories were found: /usr/lib/python3/dist-packages/numpy/f2py/tests/src/assumed_shape/.f2py_f2cmap [From Debian package: python3-numpy]
    /usr/lib/python3/dist-packages/numpy/f2py/tests/src/f2cmap/.f2py_f2cmap [From Debian package: python3-numpy]

    i.e. dot-files are suspicious.

    These are false positives. The .f2py_f2cmap files are configuration
    files for f2py which are used for type mapping from Fortran to C.

    See https://numpy.org/doc/stable/f2py/advanced/use_cases.html#dealing-with-kind-specifiers
    for details.


    Cheers
    Timo

    --
    ⢀⣴⠾⠻⢶⣦⠀ ╭────────────────────────────────────────────────────╮
    ⣾⠁⢠⠒⠀⣿⡁ │ Timo Röhling │
    ⢿⡄⠘⠷⠚⠋⠀ │ 9B03 EBB9 8300 DF97 C2B1 23BF CC8C 6BDD 1403 F4CA │
    ⠈⠳⣄⠀⠀⠀⠀ ╰────────────────────────────────────────────────────╯

    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEmwPruYMA35fCsSO/zIxr3RQD9MoFAmiD9T8ACgkQzIxr3RQD 9MrT0RAAiPQqVLE2Yherz1xzPdA2eHeFgkrkSKdeY2MHXHSS9wzIzi1F9U2oDhIu 2BmF9jplFbZ6uqWHbYSvdakWCbSQrnL3lgGJJPzYntvA0yRJefmddEbbY6C9hZlp keFbpwU0uVckJusHIbwouuy34ZY0vezhs7/hXYTCvL6Hsxr2pah0W4hbdnT8kDBE ujb5CmI8Woj3GTkvDiy1HV+dXS7bwvsKEMFlhyv4KEvatiAzN8yQrXPE0GAqUHNH 5hYLWhoK9jhu5u+x0B9HVmiTK1M+o4VodcMNzbvI7E3uJVzvay0vy26PR9yctIRW mK7UxB2wZhI9o6QtB+RIQIrKfi1AWdfpIqifcR1knXn