Unrated severityNVD Advisory· Published Jul 1, 2021· Updated Aug 4, 2024
CVE-2020-36403
CVE-2020-36403
Description
HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- HTSlib/HTSlibdescription
- osv-coords4 versionspkg:rpm/opensuse/libhts&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/libhts&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/libhts&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/libhts&distro=SUSE%20Package%20Hub%2015%20SP3
< 1.10.2-bp153.2.5.1+ 3 more
- (no CPE)range: < 1.10.2-bp153.2.5.1
- (no CPE)range: < 1.10.2-bp153.2.5.1
- (no CPE)range: < 1.10.2-bp153.2.5.1
- (no CPE)range: < 1.10.2-bp153.2.5.1
Patches
Vulnerability mechanics
References
4- bugs.chromium.org/p/oss-fuzz/issues/detailmitrex_refsource_MISC
- github.com/google/oss-fuzz-vulns/blob/main/vulns/htslib/OSV-2020-955.yamlmitrex_refsource_MISC
- github.com/samtools/htslib/commit/dcd4b7304941a8832fba2d0fc4c1e716e7a4e72cmitrex_refsource_MISC
- github.com/samtools/htslib/pull/1447mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.