PT-2019-12264 · Bwa+1 · Bwa+1
H4Ni
·
Published
2019-04-20
·
Updated
2021-07-21
·
CVE-2019-11371
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
BWA version 0.7.17 r1198
Description
The issue arises from a buffer overflow caused by a long prefix that is mishandled in the
bns fasta2bntseq and bns dump functions at btnseq.c.Recommendations
For version 0.7.17 r1198, consider updating to a newer version that addresses this issue, as using a long prefix can lead to a buffer overflow in the
bns fasta2bntseq and bns dump functions.Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bwa
Debian