** DISPUTED ** An issue has been found in HTSlib 1.8. It is a memory leak in bgzf_getline in bgzf.c. NOTE: the software maintainer's position is that the "failure to free memory" can be fixed in applications that use the HTSlib library (such as test/test_bgzf.c in the original report) and is not a library issue.
References
Link | Resource |
---|---|
https://github.com/samtools/htslib/issues/731#issue-339662537 | Exploit Patch Third Party Advisory |
Configurations
Information
Published : 2018-07-10 11:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-13843
Mitre link : CVE-2018-13843
JSON object : View
CWE
CWE-772
Missing Release of Resource after Effective Lifetime
Products Affected
htslib
- htslib