VYPR
Unrated severityNVD Advisory· Published Jul 20, 2021· Updated Aug 5, 2024

CVE-2019-25050

CVE-2019-25050

Description

netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (called from netCDFDataset::~netCDFDataset and netCDFDataset::~netCDFDataset).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • GDAL/GDALdescription
  • Osgeo/Gdalllm-fuzzy2 versions
    >=2.4.2, <=3.0.4+ 1 more
    • (no CPE)range: >=2.4.2, <=3.0.4
    • (no CPE)range: >=2.4.2, <=3.0.4

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.