CVE-2019-1010127
N/A
N/A
Summary
VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact (eg. code execution or information disclosure). The component is: The header::add_FILTER_descriptor method in header.cpp. The attack vector is: The victim must open a specially crafted VCF file.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| VCFTools | vcftools | < 0.1.15 | affected |
Weaknesses
- Use-after-free
ADP Enrichment
CVE Program Container
Additional References
- https://docs.google.com/document/d/e/2PACX-1vQJveVcGMp_NMdBY5Je2K2k63RoCYznvKjJk5u1wJRmLotvwQkG5qiqZjpABcOkjzj49wkwGweiFwrc/pub
- https://github.com/vcftools/vcftools/issues/141
References
- https://docs.google.com/document/d/e/2PACX-1vQJveVcGMp_NMdBY5Je2K2k63RoCYznvKjJk5u1wJRmLotvwQkG5qiqZjpABcOkjzj49wkwGweiFwrc/pub
- https://github.com/vcftools/vcftools/issues/141
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.