CVE-2017-1000206

Опубликовано: 17 нояб. 2017

Источник: debian

Описание

samtools htslib library version 1.4.0 and earlier is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
htslib	fixed	1.4.1-1		package
htslib	no-dsa		stretch	package
htslib	no-dsa		jessie	package

Связанные уязвимости

CVE-2017-1000206

CVSS3: 9.8

ubuntu

около 8 лет назад

samtools htslib library version 1.4.0 and earlier is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution

CVE-2017-1000206

CVSS3: 9.8

nvd

около 8 лет назад

samtools htslib library version 1.4.0 and earlier is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution

GHSA-mfgv-xhqh-pmvp

CVSS3: 9.8

github

больше 3 лет назад

samtools htslib library version 1.4.0 and earlier is vulnerable to buffer overflow in the CRAM rANS codec resulting in potential arbitrary code execution