CVE-2019-10269

Name of the Vulnerable Software and Affected Versions BWA versions prior to 2019-01-23

Description The issue is related to a stack-based buffer overflow in the bns restore function in bntseq.c via a long sequence name in a .alt file. This can potentially allow a remote attacker to cause a denial of service or execute arbitrary code.

Recommendations For versions prior to 2019-01-23, consider updating to a version released after 2019-01-23 to resolve the issue. As a temporary workaround, consider restricting the use of long sequence names in .alt files to minimize the risk of exploitation.