Lucene search
MitreCVELIST:CVE-2019-25050HistoryJul 20, 2021 - 6:46 a.m.
CVE-2019-25050
2021-07-2006:46:38
mitre
www.cve.org
3
netcdf
stack-based buffer overflow
gdal 2.4.2-3.0.4
EPSS
0.001
Percentile
19.0%
netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (called from netCDFDataset::~netCDFDataset and netCDFDataset::~netCDFDataset).
References
bugs.chromium.org/p/oss-fuzz/issues/detail?id=15143
bugs.chromium.org/p/oss-fuzz/issues/detail?id=15156
github.com/google/oss-fuzz-vulns/blob/main/vulns/gdal/OSV-2020-392.yaml
github.com/google/oss-fuzz-vulns/blob/main/vulns/gdal/OSV-2020-420.yaml
github.com/OSGeo/gdal/commit/27b9bf644bcf1208f7d6594bdd104cc8a8bb0646
github.com/OSGeo/gdal/commit/767e3a56144f676ca738ef8f700e0e56035bd05a
Related
prion
prion
Stack overflow
2021-07-20 07:15:00
osv
osv
CVE-2019-25050
2021-07-20 07:15:07
ubuntucve
ubuntucve
CVE-2019-25050
2021-07-20 00:00:00
debiancve
debiancve
CVE-2019-25050
2021-07-20 07:15:07
cve
cve
CVE-2019-25050
2021-07-20 07:15:07
nvd
nvd
CVE-2019-25050
2021-07-20 07:15:07