CVE-2019-1010127

CVE-2019-1010127 affects VCFTools vcftools prior to version 0.1.15, with a use-after-free in header.cpp:header::add_FILTER_descriptor. The documented impact is Denial of Service or possibly other effects (e.g., code execution or information disclosure). Exploitation requires the victim to open a ...

CVE-2019-1010127

VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact eg. code execution or information disclosure. The component is: The header::addFILTERdescriptor method in header.cpp. The attack vector is: The victim must open a...

Debian: Security Advisory (DLA-1807-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1807-1] vcftools security update

Package : vcftools Version : 0.1.12+dfsg-1+deb8u1 CVE ID : CVE-2018-11099 CVE-2018-11129 CVE-2018-11130 Webin security lab - dbapp security Ltd found three issues in vcftools, a collection of tools to work with VCF files. Different functions in header.cpp are vulnerable to denial of services due ...

DLA-1807-1 vcftools - security update

Bulletin has no description...

Ubuntu: Security Advisory (USN-3974-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS : VCFtools vulnerabilities (USN-3974-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3974-1 advisory. It was discovered that VCFtools improperly handled certain input. If a user was tricked into opening a crafted input file, VCFtools could be made to cras...

USN-3974-1: VCFtools vulnerabilities

It was discovered that VCFtools improperly handled certain input. If a user was tricked into opening a crafted input file, VCFtools could be made to crash. CVE-2018-11099, CVE-2018-11129, CVE-2018-11130...

Fedora 28 : vcftools (2018-ea05fcd378)

Update to latest upstream release 0.1.16 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for vcftools FEDORA-2018-ea05fcd378

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VCFtools header::add_INFO_descriptor function information disclosure vulnerability

VCFtools is a package for working with VCF files. An information disclosure vulnerability exists in the header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15. A remote attacker can exploit this vulnerability via a specially crafted vcf file to cause an information disclosure...

VCFtools header::add_FORMAT_descriptor function denial of service vulnerability

VCFtools is a package for working with VCF files. A denial of service vulnerability exists in the header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15. A remote attacker can exploit this vulnerability via a specially crafted vcf file to cause a denial of service reuse after relea...

VCFtools header::add_INFO_descriptor function denial of service vulnerability

VCFtools is a package for working with VCF files. A denial of service vulnerability exists in the header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15. A remote attacker can exploit this vulnerability via a specially crafted vcf file to cause a denial of service reuse after release...

Heap overflow

The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted vcf file...

Design/Logic Flaw

The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...

CVE-2018-11129

The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...

Design/Logic Flaw

The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...

DEBIAN-CVE-2018-11129

The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...

CVE-2018-11099

The header::addINFOdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted vcf file...

CVE-2018-11130

The header::addFORMATdescriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted vcf file...