samtools htslib library version 1.4.0 and earlier is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution
References
Link | Resource |
---|---|
https://github.com/samtools/htslib/blob/1.4.1/NEWS | Release Notes Third Party Advisory |
Configurations
Information
Published : 2017-11-17 07:29
Updated : 2017-12-01 06:46
NVD link : CVE-2017-1000206
Mitre link : CVE-2017-1000206
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
htslib
- htslib