PT-2026-26154 · Samtools · Samtools
Robert Davies
·
Publicado
2026-03-18
·
Atualizado
2026-03-19
·
CVE-2026-31973
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SAMtools versions 1.17 through 1.23.1
SAMtools version 1.21.1
SAMtools version 1.22.2
Description
SAMtools is a program used for bioinformatics file manipulation. A missing check in the
cram-size command, specifically related to the cram decode compression header() function, could lead to a NULL pointer dereference. This occurs when the function returns an error. Exploitation of this issue results in a program crash.Recommendations
Update to a version after 1.23.1.
Update to version 1.23.1.
Update to version 1.22.2.
Update to version 1.21.1.
Exploit
Correção
NULL Pointer Dereference
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Samtools