PT-2019-16051 · Libmysofa+2 · Libmysofa+2

Gutiniaoo

Published

2019-10-31

Updated

2021-03-21

CVE-2019-20016

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libmysofa before 2019-11-24

Description The issue is related to the improper restriction of recursive function calls, which can lead to stack consumption. This has been demonstrated in functions such as readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c.

Recommendations For libmysofa versions before 2019-11-24, download and update to version 0.9 or later, which should fully remediate this issue, as long as the download is made after 2019-12-06.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2025-12504

CVE-2019-20016

OPENSUSE-SU-2021:0444-1

OPENSUSE-SU-2021:0459-1

OPENSUSE-SU-2021_0444-1

OPENSUSE-SU-2024:10960-1

Affected Products

Astra Linux

Suse

Libmysofa

PT-2019-16051 · Libmysofa+2 · Libmysofa+2

CVE-2019-20016

Weakness Enumeration

Related Identifiers

Affected Products

References · 43