Lucene search
+L

12 matches found

osv
osv
added 2026/06/08 12:4 a.m.12 views

OSV-2026-882 Null-dereference READ in cram_decoder_init

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=520827587 Crash type: Null-dereference READ Crash state: cramdecoderinit cramdecodecompressionheader cramnextslice...

5.4AI score
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/06 12:0 a.m.12 views

PT-2026-49602

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=519841736 Crash type: Global-buffer-overflow READ 8 Crash state: cram decoder init cram decode compression header cram next slice...

5.2AI score
Exploits0References2
cvelist
cvelist
added 2026/03/18 7:55 p.m.22 views

CVE-2026-31971 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYLEN method, the crambytearraylendecode failed to validat...

7.1CVSS0.00336EPSS
Exploits0References2
cvelist
cvelist
added 2026/03/18 7:47 p.m.23 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYSTOP method, an out-by-one error in the...

7.1CVSS0.00336EPSS
Exploits0References2
osv
osv
added 2026/03/18 7:47 p.m.5 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYSTOP method, an out-by-one error in the...

7.1CVSS6.2AI score0.00336EPSS
Exploits0References4
cvelist
cvelist
added 2026/03/18 7:38 p.m.18 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS0.00409EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/03/18 7:38 p.m.1 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.2AI score0.00409EPSS
Exploits0References2
cve
cve
added 2026/03/18 7:38 p.m.13 views

CVE-2026-31968

HTSlib CRAM decoder (CVE-2026-31968) has incomplete validation in the VARINT and CONST encodings, which can cause writes past heap allocations or a stack byte, potentially enabling heap or stack corruption and, in some streams, arbitrary code execution. Affected versions are 1.23.1, 1.22.2, and 1...

8.8CVSS6.2AI score0.00409EPSS
Exploits0References2Affected Software1
osv
osv
added 2026/03/18 7:38 p.m.4 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.5AI score0.00409EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2026/03/18 6:27 p.m.3 views

CVE-2026-31964 HTSlib CRAM decoder has a NULL Pointer Dereference

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. While most alignment records store DNA sequence and quality values, the format also allows them to om...

6.9CVSS5.8AI score0.00322EPSS
Exploits0References2
osv
osv
added 2026/03/18 6:27 p.m.5 views

CVE-2026-31964 HTSlib CRAM decoder has a NULL Pointer Dereference

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. While most alignment records store DNA sequence and quality values, the format also allows them to om...

6.9CVSS5.9AI score0.00322EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2023/09/12 12:0 a.m.7 views

PT-2023-36004 · Git +1 · Htslib

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash involves the uint7 get 64, cram huffman decode init, and cram decoder init functions. No...

7AI score
Exploits0References2
Rows per page
Query Builder