CVE-2018-13844

Опубликовано: 10 июл. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue has been found in HTSlib 1.8. It is a memory leak in fai_read in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib users would be aware of the need to destruct this object returned by fai_load() in their own code

Ссылки

https://github.com/samtools/htslib/issues/731#issuecomment-403675330
Third Party Advisory
https://github.com/samtools/htslib/issues/731#issuecomment-403675330
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:htslib:htslib:1.8:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00366

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-401

Связанные уязвимости

CVE-2018-13844

CVSS3: 7.5

ubuntu

больше 7 лет назад

CVE-2018-13844

CVSS3: 7.5

debian

больше 7 лет назад

An issue has been found in HTSlib 1.8. It is a memory leak in fai_read ...

GHSA-2f5j-prvf-gf42

CVSS3: 7.5

github

больше 3 лет назад

** DISPUTED ** An issue has been found in HTSlib 1.8. It is a memory leak in fai_read in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib users would be aware of the need to destruct this object returned by fai_load() in their own code.

EPSS

Процентиль: 58%

0.00366

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-401