Name of the Vulnerable Software and Affected Versions Apache Arrow (affected versions not specified)

Description A heap buffer overflow issue has been identified. The crash occurs in the arrow::util::RleDecoder::NextCounts and arrow::util::RleDecoder::GetBatchWithDictSpaced functions. This issue is related to the parquet::DictDecoderImpl with parquet::PhysicalType. No information is available about the estimated number of potentially affected devices or real-world incidents.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.